1PUPPET-CERTIFICATE_REVOCATION_LISTP(u8p)pet maPnUuPaPlET-CERTIFICATE_REVOCATION_LIST(8)
2
3
4

NAME

6       puppet-certificate_revocation_list  -  Manage  the list of revoked cer‐
7       tificates.
8

SYNOPSIS

10       puppet  certificate_revocation_list   action   [--terminus   _TERMINUS]
11       [--extra HASH]
12

DESCRIPTION

14       This  subcommand is primarily for retrieving the certificate revocation
15       list from the CA.
16

OPTIONS

18       Note that any setting that´s valid in the configuration file is also  a
19       valid  long  argument,  although  it  may or may not be relevant to the
20       present action. For example, server and run_mode are valid settings, so
21       you  can  specify  --server <servername>, or --run_mode <runmode> as an
22       argument.
23
24       See   the   configuration   file    documentation    at    https://pup
25       pet.com/docs/puppet/latest/configuration.html  for  the  full  list  of
26       acceptable parameters. A commented list of  all  configuration  options
27       can also be generated by running puppet with --genconfig.
28
29       --render-as FORMAT
30              The  format  in  which to render output. The most common formats
31              are json, s (string), yaml, and console, but other options  such
32              as dot are sometimes available.
33
34       --verbose
35              Whether to log verbosely.
36
37       --debug
38              Whether to log debug information.
39
40       --extra HASH
41              A  terminus  can  take additional arguments to refine the opera‐
42              tion, which are passed as an arbitrary  hash  to  the  back-end.
43              Anything  passed  as  the extra value is just send direct to the
44              back-end.
45
46       --terminus _TERMINUS
47              Indirector faces expose indirected subsystems of  Puppet.  These
48              subsystems  are  each able to retrieve and alter a specific type
49              of data (with the familiar actions of find,  search,  save,  and
50              destroy) from an arbitrary number of pluggable backends. In Pup‐
51              pet parlance, these backends are called terminuses.
52
53              Almost all indirected  subsystems  have  a  rest  terminus  that
54              interacts with the puppet master´s data. Most of them have addi‐
55              tional terminuses for various local data models,  which  are  in
56              turn used by the indirected subsystem on the puppet master when‐
57              ever it receives a remote request.
58
59              The terminus for an action is often determined by  context,  but
60              occasionally needs to be set explicitly. See the "Notes" section
61              of this face´s manpage for more details.
62

ACTIONS

64       destroy - Delete the certificate revocation list.
65              SYNOPSIS
66
67              puppet certificate_revocation_list destroy  [--terminus  _TERMI‐
68              NUS] [--extra HASH] dummy_text
69
70              DESCRIPTION
71
72              Deletes  the  certificate  revocation  list. This cannot be done
73              over REST, but it is possible to delete the locally cached  copy
74              or the local CA´s copy of the CRL.
75
76              RETURNS
77
78              Nothing.
79
80              NOTES
81
82              Although  this  action always deletes the CRL from the specified
83              terminus, it requires a dummy argument; this is a known bug.
84
85       find - Retrieve the certificate revocation list.
86              SYNOPSIS
87
88              puppet certificate_revocation_list find  [--terminus  _TERMINUS]
89              [--extra HASH] [key]
90
91              DESCRIPTION
92
93              Retrieve the certificate revocation list.
94
95              RETURNS
96
97              The  certificate  revocation  list. When used from the Ruby API:
98              returns an OpenSSL::X509::CRL object.
99
100              NOTES
101
102              Although this action always returns the CRL from  the  specified
103              terminus.
104
105       info - Print the default terminus class for this face.
106              SYNOPSIS
107
108              puppet  certificate_revocation_list  info [--terminus _TERMINUS]
109              [--extra HASH]
110
111              DESCRIPTION
112
113              Prints the default terminus class for this subcommand. Note that
114              different  run modes may have different default termini; when in
115              doubt, specify the run mode with the ´--run_mode´ option.
116

EXAMPLES

118       find
119
120       Retrieve a copy of the puppet master´s CRL:
121
122       $ puppet certificate_revocation_list find --terminus rest
123

NOTES

125       This subcommand is an indirector  face,  which  exposes  find,  search,
126       save,  and destroy actions for an indirected subsystem of Puppet. Valid
127       termini for this face include:
128
129       ·   ca
130
131       ·   disabled_ca
132
133       ·   file
134
135       ·   rest
136
137
138
140       Copyright 2011 by Puppet Inc. Apache 2 license; see COPYING
141
142
143
144Puppet, Inc.                     January 2P0U2P0PET-CERTIFICATE_REVOCATION_LIST(8)
Impressum