2 description 'Node common role.'
5 'role[security_update]',
7 'recipe[commons::yum-epel]',
8 'recipe[commons::ntpd]',
9 'recipe[ssl_cert::ca_certs]',
10 'recipe[ssl_cert::ca_pubkeys]',
11 'recipe[ssl_cert::ssh_ca_krl]',
12 'recipe[ssh_utils::server]',
18 ssh_ca_name = 'grid_ssh_ca'
27 'http' => 'http://ftp.grid.example.com:3142/',
33 'with_ssl_cert_cookbook' => true,
35 'ca_pubkey_name' => ssh_ca_name,
36 'ssh_ca_krl_name' => ssh_ca_name,
40 # because with_ssl_cert_cookbook is set
41 #'TrustedUserCAKeys' => ca_pubkeys_file,
42 #'RevokedKeys' => ssh_ca_krl_file,
47 'ca_cert_file_prefix' => '00',
48 'ca_pubkey_file_prefix' => '00',
49 'server_cert_file_prefix' => '01',
50 'server_key_file_prefix' => '01',
54 'ca_pubkey_names' => [
57 'ssh_ca_krl_name' => ssh_ca_name,