kbarber

Renew Puppet CA cert.

Not the perfect idea, but should alleviate the need to resign every cert.

What you need from existing puppet ssl directory:
ca/ca_crt.pem
ca/ca_key.pem

Create an openssl.cnf:
[ca]

caius

def output name=((default=true); "caius")
  puts "name: #{name.inspect}"
  puts "default: #{default.inspect}"
end

output
# >> name: "caius"
# >> default: true

output "avdi"