Scénario #37246
Mis à jour par Klaas TJEBBES il y a 4 mois
Suivant les version de Scribe, salt n'utilise pas le même dossier pour stocker les clés des clients.
Fixer le dossier "pki_dir" dans "/etc/salt/master" permettrait de ne plus se soucier de son emplacement pour les migrations futures.
Le fichier "/etc/salt/master" est déjà un template dans "/usr/share/eole/creole/distrib/master".
<pre>
root@scribe:~# cat /etc/eole/release
EOLE_MODULE=scribe
EOLE_VERSION=2.7
EOLE_RELEASE=2.7.2
root@scribe:~# find /etc/salt/pki/ /var/lib/salt/pki/
/etc/salt/pki/
/etc/salt/pki/master
/etc/salt/pki/master/minions_autosign
/etc/salt/pki/master/minions
/etc/salt/pki/master/minions_pre
/etc/salt/pki/master/minions_pre/PC-1622835.domscribe.ac-test.fr
/etc/salt/pki/master/minions_rejected
/etc/salt/pki/master/master.pub
/etc/salt/pki/master/master.pem
/etc/salt/pki/master/minions_denied
/var/lib/salt/pki/
/var/lib/salt/pki/master
</pre>
<pre>
root@scribe:~# cat /etc/eole/release
EOLE_MODULE=scribe
EOLE_VERSION=2.9
EOLE_RELEASE=2.9.0
root@scribe:~# find /etc/sa
salt/ samba/ sane.d/
root@scribe:~# find /etc/salt/pki /var/lib/salt/pki/
find: ‘/etc/salt/pki’: Aucun fichier ou dossier de ce nom
/var/lib/salt/pki/
/var/lib/salt/pki/master
/var/lib/salt/pki/master/master.pub
/var/lib/salt/pki/master/minions
/var/lib/salt/pki/master/minions/PC-1622835.domscribe.ac-test.fr
/var/lib/salt/pki/master/minions_pre
/var/lib/salt/pki/master/master.pem
/var/lib/salt/pki/master/minions_denied
/var/lib/salt/pki/master/minions_rejected
/var/lib/salt/pki/master/minions_autosign
</pre>
<pre>
root@scribe:~# cat /etc/eole/release
EOLE_MODULE=scribe
EOLE_VERSION=2.10
EOLE_RELEASE=2.10.0
root@scribe:~# find /etc/salt/pki/ /var/lib/salt/pki/
/etc/salt/pki/
/etc/salt/pki/master
/etc/salt/pki/master/minions_denied
/etc/salt/pki/master/minions_autosign
/etc/salt/pki/master/master.pem
/etc/salt/pki/master/minions_pre
/etc/salt/pki/master/master.pub
/etc/salt/pki/master/minions_rejected
/etc/salt/pki/master/minions
/etc/salt/pki/master/minions/PC-1622835.domscribe.ac-test.fr
/var/lib/salt/pki/
/var/lib/salt/pki/master
</pre>
Fixer le dossier "pki_dir" dans "/etc/salt/master" permettrait de ne plus se soucier de son emplacement pour les migrations futures.
Le fichier "/etc/salt/master" est déjà un template dans "/usr/share/eole/creole/distrib/master".
<pre>
root@scribe:~# cat /etc/eole/release
EOLE_MODULE=scribe
EOLE_VERSION=2.7
EOLE_RELEASE=2.7.2
root@scribe:~# find /etc/salt/pki/ /var/lib/salt/pki/
/etc/salt/pki/
/etc/salt/pki/master
/etc/salt/pki/master/minions_autosign
/etc/salt/pki/master/minions
/etc/salt/pki/master/minions_pre
/etc/salt/pki/master/minions_pre/PC-1622835.domscribe.ac-test.fr
/etc/salt/pki/master/minions_rejected
/etc/salt/pki/master/master.pub
/etc/salt/pki/master/master.pem
/etc/salt/pki/master/minions_denied
/var/lib/salt/pki/
/var/lib/salt/pki/master
</pre>
<pre>
root@scribe:~# cat /etc/eole/release
EOLE_MODULE=scribe
EOLE_VERSION=2.9
EOLE_RELEASE=2.9.0
root@scribe:~# find /etc/sa
salt/ samba/ sane.d/
root@scribe:~# find /etc/salt/pki /var/lib/salt/pki/
find: ‘/etc/salt/pki’: Aucun fichier ou dossier de ce nom
/var/lib/salt/pki/
/var/lib/salt/pki/master
/var/lib/salt/pki/master/master.pub
/var/lib/salt/pki/master/minions
/var/lib/salt/pki/master/minions/PC-1622835.domscribe.ac-test.fr
/var/lib/salt/pki/master/minions_pre
/var/lib/salt/pki/master/master.pem
/var/lib/salt/pki/master/minions_denied
/var/lib/salt/pki/master/minions_rejected
/var/lib/salt/pki/master/minions_autosign
</pre>
<pre>
root@scribe:~# cat /etc/eole/release
EOLE_MODULE=scribe
EOLE_VERSION=2.10
EOLE_RELEASE=2.10.0
root@scribe:~# find /etc/salt/pki/ /var/lib/salt/pki/
/etc/salt/pki/
/etc/salt/pki/master
/etc/salt/pki/master/minions_denied
/etc/salt/pki/master/minions_autosign
/etc/salt/pki/master/master.pem
/etc/salt/pki/master/minions_pre
/etc/salt/pki/master/master.pub
/etc/salt/pki/master/minions_rejected
/etc/salt/pki/master/minions
/etc/salt/pki/master/minions/PC-1622835.domscribe.ac-test.fr
/var/lib/salt/pki/
/var/lib/salt/pki/master
</pre>