← Back to team overview

yahoo-eng-team team mailing list archive

  1. yahoo-eng-team team
  2. Mailing list archive
  3. Message #81798

[Bug 1865352] [NEW] cloud-init: Add support for certmonger

  Thread PreviousDate PreviousThread Next 
Public bug reported:

This is a request to integrate certmonger with cloud-init, such that
certificates can be requested and provisioned as part of the
initialisation process.

Possible sample configuration:

certs:
  Redwax Interop:
    type: scep
    url: http://interop.redwax.eu/test/simple/scep
    requests:
    - certificate: /etc/pki/interop/test.example.com.cert
      key: /etc/pki/interop/test.example.com.key
      key-type: rsa
      key-bits: 4096

and so on, corresponding to the following commands:

getcert add-scep-ca -c "Redwax Interop" -u http://interop.redwax.eu/test/simple/scep
getcert request -f /etc/pki/interop/test.example.com.cert -k /etc/pki/interop/test.example.com.key -c "Redwax Interop" -I test.example.com -D test.example.com -G rsa -g 4096 -u digitalSignature -u keyEncipherment -L challenge

** Affects: cloud-init
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to cloud-init.
https://bugs.launchpad.net/bugs/1865352

Title:
  cloud-init: Add support for certmonger

Status in cloud-init:
  New

Bug description:
  This is a request to integrate certmonger with cloud-init, such that
  certificates can be requested and provisioned as part of the
  initialisation process.

  Possible sample configuration:

  certs:
    Redwax Interop:
      type: scep
      url: http://interop.redwax.eu/test/simple/scep
      requests:
      - certificate: /etc/pki/interop/test.example.com.cert
        key: /etc/pki/interop/test.example.com.key
        key-type: rsa
        key-bits: 4096

  and so on, corresponding to the following commands:

  getcert add-scep-ca -c "Redwax Interop" -u http://interop.redwax.eu/test/simple/scep
  getcert request -f /etc/pki/interop/test.example.com.cert -k /etc/pki/interop/test.example.com.key -c "Redwax Interop" -I test.example.com -D test.example.com -G rsa -g 4096 -u digitalSignature -u keyEncipherment -L challenge

To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-init/+bug/1865352/+subscriptions

Follow ups

  Thread PreviousDate PreviousThread Next