you can export the file content as fact and query puppetdb for this fact?

and can you explain what kind of application this is

basically the openssl module. if you export a certificate resource and import it on different agents, each agent uses the openssl command to generate a certificate. this of course prevents using the same certificate on multiple agents

which in turn makes CA management impossible, as there is no real use if every node has a different CA file

do you want to create a cert once and distribute it to multiple machines?

or create the CA once?

create the CA once and distribute it to multiple machines

so the agents can generate their own client certs and authenticate against each other

define it on one system, e.g. the puppetserver, export it as fact or file resoure, collect it on all other nodes

or save it in a directory that's accessible via https and download it from there

and thats where the provider system of the openssl module falls short

that's nothing the openssl module should do

at least the define on one system and collect it on all others doesnt work this way, you get different certs on all machines

that's just a file resource in your profile to put the CA into the correct place?

ah you mean the CA cert as a file and just export and import that. maybe i need to clarify what i am trying to do ^^

i try to define opensslcertificatex509{'CAcert':}; export that and then import it on all nodes i want it on

and that generates different certs on all nodes; but maybe thats just a problem of the compound nature of the resource

as I said, don't export that resource. create a fact that reads the CA file

that will go into puppetdb

and you can query that fact on other systems

ohhh, gotcha

that might work, i will try that

@bastelfreak I would have fix for https://github.com/voxpupuli/puppet-check_mk/pull/38 but that would require some major changes to the module.. is it ok to do that in that one PR?

Can you create a new branch based on the modulesync branch and do the changes there?

sure

https://github.com/voxpupuli/puppet-dnsquery/blob/master/lib/puppet/functions/dnsquery/lookup.rb mhm how do I pass the lambda to the function

@b4ldr ^ any idea? 🙂

https://www.puppet.com/docs/puppet/7/functions_ruby_signatures.html mentions optional_block_param but not how it's used 😞

ah lol

dnsquery::lookup('example.com') || {['127.0.0.1']}