# The configuration file for puppetca. Note that this file # is likely to have unused configuration parameters in it; any parameter that's # valid anywhere in Puppet can be in any config file, even if it's not used. # # Every section can specify three special parameters: owner, group, and mode. # These parameters affect the required permissions of any files specified after # their specification. Puppet will sometimes use these parameters to check its # own configured state, so they can be used to make Puppet a bit more self-managing. # # Note also that the section names are entirely for human-level organizational # purposes; they don't provide separate namespaces. All parameters are in a # single namespace. # # Generated on Mon Aug 07 14:47:26 PDT 2006. # [puppet] # Where Puppet stores dynamic and growing data. # The default value is '/var/puppet'. vardir = /var/lib/puppet # Where SSL certificates are kept. # The default value is '$confdir/ssl'. ssldir = $vardir/ssl [puppetca] # The configuration file for puppetca. # The default value is '$confdir/puppetca.conf'. # config = $confdir/puppetca.conf [certificates] # The public key directory. # The default value is '$ssldir/public_keys'. publickeydir = /media/disk/puppet/public_keys # Where the client stores private certificate information. # The default value is '$ssldir/private'. # privatedir = $ssldir/private # Where puppetd stores the password for its private key. # Generally unused. # The default value is '$privatedir/password'. # passfile = $privatedir/password # The certificate directory. # The default value is '$ssldir/certs'. certdir = /media/disk/puppet/certs # The private key directory. # The default value is '$ssldir/private_keys'. privatekeydir = /media/disk/puppet/private_keys [ca] # Where the CA stores signed certificates. # The default value is '$cadir/signed'. signeddir = /media/disk/puppet/signed # The root directory for the certificate authority. # The default value is '$ssldir/ca'. # cadir = $ssldir/ca # Where the CA stores the password for the private key # The default value 22is '$caprivatedir/ca.pass'. # capass = $caprivatedir/ca.pass # Where the serial number for certificates is stored. # The default value is '$cadir/serial'. # serial = $cadir/serial # The CA private key. # The default value is '$cadir/ca_key.pem'. # cakey = $cadir/ca_key.pem # The CA public key. # The default value is '$cadir/ca_pub.pem'. # capub = $cadir/ca_pub.pem # The CA certificate. # The default value is '$cadir/ca_crt.pem'. # cacert = $cadir/ca_crt.pem # Where the CA stores private certificate information. # The default value is '$cadir/private'. # caprivatedir = $cadir/private