[Spacewalk-list] package update issues
Kennedy, Ryan
rkennedy at PAML.com
Tue Feb 2 19:55:13 UTC 2010
Cool. Thanks James.
I see the GPG keys in the ks file now.
-----Original Message-----
From: spacewalk-list-bounces at redhat.com [mailto:spacewalk-list-bounces at redhat.com] On Behalf Of James Hogarth
Sent: Tuesday, February 02, 2010 11:40 AM
To: spacewalk-list at redhat.com
Subject: Re: [Spacewalk-list] package update issues
On 2 February 2010 16:52, Kennedy, Ryan <rkennedy at paml.com> wrote:
> James, thanks for the reply.
>
> I checked and the client had the RPM-GPG-KEY-CentOS-5 key (i.e. E8562897) in /etc/pki/rpm-gpg which is the one yum was complaining about not having. I ran a `rpm --import` on that key and tried it again and it worked great. I am even able to push out a package update from the Spacewalk server now which is great. There is only 1 other key in that directory though (RPM-GPG-KEY-beta) and the Spacewalk server has keys in that same directory for each repo that I have on it (EPEL, RPMForge, Updates, Spacewalk, etc.) The key files are... (RPM-GPG-KEY-dag RPM-GPG-KEY-redhat-former RPM-GPG-KEY-redhat-rhz RPM-GPG-KEY-CentOS-5 RPM-GPG-KEY-EPEL RPM-GPG-KEY-redhat-release RPM-GPG-KEY-spacewalk).
>
> My question is: Do I need to add all of those keys to the kickstart profile (I would assume yes at least for EPEL and RPMForge)? How do I add them? Under "Kickstart::GPG and SSL keys" perhaps, and then check them off in "KS Profile::System Details::GPG & SSL"? Or do I add them under "KS Profile::Activation Keys". I apologize if this is common knowledge. This is all pretty new to me and the CentOS Spacewalk guide didn't cover adding keys to the KS profile.
> Thanks.
>
> --Ryan
>
Systems/Kickstart/GPG and SSL keys
Import your keys there...
Systems/Kickstart/Profiles
Go into your profile for your kickstart and in the GPG/SSL tab (under
system details) tick the GPG keys and SSL certs you want imported.
Now newly kickstarted systems will have the GPG key imported.
If you view the kickstart file itself you can see what commands it
runs (basically echos the raw GPG to a /tmp file and imports it).
For existing systems you will need to import the file manually.
That at least is my implementation experience so far :)
James
_______________________________________________
Spacewalk-list mailing list
Spacewalk-list at redhat.com
https://www.redhat.com/mailman/listinfo/spacewalk-list
DISCLAIMER:
Information contained in this message may be privileged and confidential.
If the reader of this message is not the intended recipient, be notified
that any dissemination, distribution or copying of this communication is
strictly prohibited. If this communication is received in error, please
notify the sender immediately by replying to the message and deleting
from your computer. Thank you
More information about the Spacewalk-list
mailing list