Displaying 1 result from an estimated 1 matches for "challengepassword".
2014 Feb 17
0
Custom policy executable
...g some issue with the master not signing the
request.
My client has the following in /etc/puppet/csr_attributes.yaml
custom_attributes:
1.2.840.113549.1.9.7: foo
My policy is a simple bash script, in this case checking for foo
#!/bin/bash
CUSTOM_ATTR=$(echo "$(cat)" | grep "challengePassword" | awk -F ":"
'{print$2}')
if [[ "$CUSTOM_ATTR" == "foo" ]]
then
exit 0
else
exit 1
fi
I had tested with the following, I'm guessing the issue is with my script
not reading in the CSR from puppet? If anyone has any examples of policies...