Ben Vincent
df8a55c3dd
- manage the puppet ca.cfg - distribute the crl.pem from the puppetca to masters
11 lines
435 B
Plaintext
11 lines
435 B
Plaintext
certificate-authority: {
|
|
# allow CA to sign certificate requests that have subject alternative names.
|
|
allow-subject-alt-names: <%= @allow_subject_alt_names %>
|
|
|
|
# allow CA to sign certificate requests that have authorization extensions.
|
|
allow-authorization-extensions: <%= @allow_authorization_extensions %>
|
|
|
|
# enable the separate CRL for Puppet infrastructure nodes
|
|
enable-infra-crl: <%= @enable_infra_crl %>
|
|
}
|