[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: using cfkey to create remote keys
From: |
Doug Chapman |
Subject: |
Re: using cfkey to create remote keys |
Date: |
Tue, 5 Apr 2005 19:21:12 -0700 |
Or you could use TrustKeysFrom() in the cfservd.conf to exchange keys
the first time:
http://www.cfengine.org/docs/cfengine-Reference.html#TrustKeysFrom
On Apr 5, 2005 4:00 PM, Brendan Strejcek <brendan@cs.uchicago.edu> wrote:
> Harry Hoffman wrote:
>
> > Is there any plans to allow cfkey to create client keys so that they may
> > be distributed to the client during install time?
>
> You can already do this, I think:
>
> $ cfkey
> A key file already exists at /home/brendan/.cfagent/ppkeys/localhost.priv.
> $ cd ~/.cfagent/ppkeys/
> $ mv localhost.p* ~
> $ cfkey
> Making a key pair for cfengine, please wait, this could take a minute...
> Writing private key to /home/brendan/.cfagent/ppkeys/localhost.priv
> Writing public key to /home/brendan/.cfagent/ppkeys/localhost.pub
> $
>
> Then you can rename the keys as you see fit, and install them on clients
> and servers.
>
> Not the cleanest thing in the world, but you can script it and add any
> interface you want.
>
> Best,
> Brendan
>
> _______________________________________________
> Help-cfengine mailing list
> Help-cfengine@gnu.org
> http://lists.gnu.org/mailman/listinfo/help-cfengine
>
--
prjctgeek@gmail.com