It's likely that I've missed something "basic." I'm able to run cfagent from
clients, successfully (I modify a "test file" to ensure that CFengine corrects
it). When running `cfrun` from the policyhost (i.e., the "server"), I don't
get errors. My test file is also not "corrected..." nor do I see output
suggesting that cfengine is evaluating promises/etc. Authentication appears to
proceed without incident:
KeyAuthentication(with IP keyname root-10.10.x.x)
cfrun:myServer.myDomain.com: Strong authentication of
server=myClient.myDomain.com connection confirmed
I've run `cfrun -d[0-2]` on the policy host and `cfservd -d -F` on the
client... and just don't see where I've gone wrong. While the forward &
reverse lookup (DNS) records exist for the policyhost/server, only the forward
lookup exists for the clients (although I've added these IPs to the /etc/hosts
file). DNS does not appear to be relevant (for I'm not having authentication
failures). What doesn't happen is, well, "anything useful."
I'll gladly post any output/configs/etc. Oh, yes, of course I've allowed
(grant) all hosts/clients to access programs, exchange keys, etc.
>From cfservd.:
==========
cfe_servers = ( 10.10.1 )
cfe_clients = ( 10.10.1 )
grant:
/usr/sbin/cfagent 10.10.1
You can be surly in your responses. I reached the end of the Internet around
thirty minutes ago. I may just be dumb.
Thanks,
Todd (aka, Dances with Config Files)
_________________________________________________________________
Hotmail: Trusted email with powerful SPAM protection.
http://clk.atdmt.com/GBL/go/210850553/direct/01/_______________________________________________
Help-cfengine mailing list
Help-cfengine@cfengine.org
https://cfengine.org/mailman/listinfo/help-cfengine
