I've solved this problem using Foreman, which provides both the kickstart / preseed / jumpstart file, enable autosign, and disable autosign automatically.
Foreman authenticate the hosts based on IP / MAC addresses(e,g ksmeta). I guess you can do something similar during your provisioning phases. Ohad On Thu, Jun 3, 2010 at 12:42 PM, Matthew Delves <m.del...@ballarat.edu.au>wrote: > Hey Folks, > I'm looking at doing automated provisioning of new servers and am trying to > integrate puppet into this process. What I'm wondering though is what the > best process for securely registering a new node is. > > At the moment the first time puppet is run I have to then accept the > certificate on the puppetmaster and then run puppet again. > > What I would like to do is accept the certificate automatically, though am > hesitant to do so as then anyone could just register against the > puppetmaster. > > Is there a way to do this securely? > > Thanks, > Matt. > -- > > --------------------------------------------- > Matthew Delves > System Administrator > Information Systems > Networks & Infrastructure > University of Ballarat > ph: 03 5327 9732 > email: m.del...@ballarat.edu.au > > > -- > You received this message because you are subscribed to the Google Groups > "Puppet Users" group. > To post to this group, send email to puppet-us...@googlegroups.com. > To unsubscribe from this group, send email to > puppet-users+unsubscr...@googlegroups.com<puppet-users%2bunsubscr...@googlegroups.com> > . > For more options, visit this group at > http://groups.google.com/group/puppet-users?hl=en. > > -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-us...@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
