Why need a community cookbook chef-client


#1

Why need a community cookbook chef-client?

  1. This cookbook initially used by chef-client to bootstrap a new node?
  • This is assumption.
  1. Using this cookbook when you want to automate chef-client runs and
    deamonize chef-client ?

    2.1 When you need to deamonize chef-client always or in specific
    situations ?

And very small question:

  1. Why sometimes we need to delete validation.key via for example
    chef-client::delete_validation ?
    I see this in the chef open training presentation at page 141. But don’t
    understand why it was using there.

Thank you very much.


Best regards,

CVision Lab System Administrator
Vladmir Skubriev


#2

On May 7, 2013, at 6:21 AM, Vladimir Skubriev skubriev@cvisionlab.com wrote:

  1. Why sometimes we need to delete validation.key via for example chef-client::delete_validation ?
    I see this in the chef open training presentation at page 141. But don’t understand why it was using there.

It’s a cryptographic key that is only used during the initial registration of a new chef client node. It is not needed afterwards, and since any node that has this key can use it to register itself to your chef server, this is not something you want to just leave laying around. It should be deleted as soon as it is no longer needed.


Brad Knowles brad@shub-internet.org
LinkedIn Profile: http://tinyurl.com/y8kpxu


#3

On 07.05.2013 17:50, Brad Knowles wrote:

On May 7, 2013, at 6:21 AM, Vladimir Skubriev skubriev@cvisionlab.com wrote:

  1. Why sometimes we need to delete validation.key via for example chef-client::delete_validation ?
    I see this in the chef open training presentation at page 141. But don’t understand why it was using there.
    It’s a cryptographic key that is only used during the initial registration of a new chef client node. It is not needed afterwards, and since any node that has this key can use it to register itself to your chef server, this is not something you want to just leave laying around. It should be deleted as soon as it is no longer needed.


Brad Knowles brad@shub-internet.org
LinkedIn Profile: http://tinyurl.com/y8kpxu

Okey I understand now. Thank you very much


Best regards,

CVision Lab System Administrator
Vladmir Skubriev