I got a little closer to the answer on this.
The error seems to be SELinux related. If I disable SELinux on the puppet
master, the error goes away on the client.
I found this in my audit log on the puppet server:
type=AVC msg=audit(1434769414.956:562): avc: denied { open } for
pid=3558 comm=
>
> mydomain.com <-> jokefire.com
> Is this copy-n-paste or does the filename and the source name not match?
Yah, this was a mistake on my part in trying to obscure the domain name. LOL
Sorry about that. But in fact mydomain.com == jokefire.com
Here's the actual definition:
file { "/etc/pki/tl
Hi Tim,
the agent wants to fetch the file
> puppet:///modules/bacula/monitor1/monitor1.mydomain.com.crt
But on the Master you are shooing us a file with the name:
> environments/production/modules/bacula/files/monitor1:
> total 8.0K
> -rw-r--r--. 1 puppet puppet 2.0K Jun 16 21:53 monitor1.jokefir
Hi all,
I've setup a puppet module to install and keep the bacula backup system
running on a number of systems.
Part of the formula I've come up with is to transfer an SSL cert/key pair
to each host that uses the module. So that bacula can work over TLS.
I have this defined in my bacula confi
