Forum: Cfengine Help Subject: Re: Need help troubleshooting Remote Access key exchange Author: regan99 Link to topic: https://cfengine.com/forum/read.php?3,21233,21253#msg-21253
Ok, I think I figured out the issues. I am able to do the key exchange now. I ended up deleting the keys, creating new ones, and trying the exchange again. Things are working now. Thanks for the input! Now that the client is able to securely communicate with the policy server, I am unsure how to get changes made on the policy server to propagate to the client. I realize that I can either wait for cf-execd to run the cf-agent on the client at 5 minute intervals (or whatever I set it to), or I can run cf-runagent on the policy server, using the client as a target host via the "-H" option. However, I am not sure how to make the client update it's files to reflect any changes made on the policy server. I read the tutorial about remote file copying, but I think I am still missing the basic concept. My policy server runs everything as root. I don't have a user account where I keep my promise files or anything. I have all of those in "/var/cfengine/inputs." I see a lot of people referencing /var/cfengine/masterfiles, but after I installed Cfengine 3 using the rpm package, I do not have any files in that location. Am I supposed to be copying files from "inputs" to "masterfiles" for safe keeping? Or perhaps that is a good location to make a workspace so I can maintain copies of these files in a Subversion repo or something? And from there, how should I be configuring clients to know where to copy files from? If the client has a failsafe.cf and update.cf configured to copy all of the .cf files from the policy server, won't that action overwrite the failsafe.cf and update.cf files to make them match what I have on the policy server? I wish I could change my forum title from "Contributor" back to "newb." :| _______________________________________________ Help-cfengine mailing list Help-cfengine@cfengine.org https://cfengine.org/mailman/listinfo/help-cfengine
