Uploaded image for project: 'Satellite'
  1. Satellite
  2. SAT-34597

[foreman] Change provisioning templates to make deployed/registered hosts trust CA-signed keys

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • 6.19.0
    • None
    • None
    • None
    • None

      • pull CA pubkeys from proxies
      • on the host, deploy CA pubkeys into a single file, one per line
      • place a sshd config drop-in to point sshd at the file with CA pubkeys
        •  should we deploy both public keys and CA pubkeys or should CA pubkeys "win"?
      • reload sshd

              rhn-support-alazik Adam Lazik
              aruzicka@redhat.com Adam Ruzicka
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: