BlogContact SalesTry Puppet 
Search Puppet.com

Puppet is the industry standard for IT automation.

Modernize, manage and bring your hybrid infrastructure into compliance through Puppet's powerful continuous automation.

Guidebook
Use Cases
Puppet Enterprise LogoGet Puppet Enterprise

First 10 nodes are free!

Products
Pricing & Packaging
Integrations
Puppet Education Logo
Puppet Education

Puppet Education is your learning portal for tools and best practices to address common business challenges.

Professional services
Support
Custom consulting services

Get up and running quickly with a custom solution that addresses your unique business goals and easily allows for growth as your needs evolve.

Puppet Forge

Find thousands of component modules built by the community and guidance on using them in your own infrastructure.

EcosystemOpen Source Projects
Community
Contribute
State of DevOps Report

Since launching our first DevOps survey in 2012, we’ve learned a lot about the power of DevOps to transform organizations.

Product Documentation
Resource library
Customers
Partners
Featured Partners
Servicenow Logo
Splunk Logo
Puppet Events
About Us

Puppet automates your infrastructure so you can innovate. We find, fix, and predict in order to prevent surprises and maintain your desired state.

Puppet by PerforceWorking at Puppet by Perforce
Press & news
Events
It's our community that makes Puppet great. Connect with Puppet users and employees.
homeblogupdated puppet gpg signing key 2020 edition

Updated Puppet GPG signing key, 2020 edition

by Eric Griswold|10 June 2020

Editor's note: This change to the GPG signing key affects both Puppet Enterprise users and open source Puppet users. If you're using Puppet Enterprise, you'll be getting the new key in an upcoming release, or if you manually update your version of puppet-agent, you'll get it then.

Thanks to Morgan Rhodes (@KnittyNerd) for all the technical details for this blog post.

The GPG signing key we’ve been using to sign Puppet products on Linux is expiring in August 2021, so we will be switching to a new key. This means you’ll need to import the new key to be able to use Puppet's public apt and yum repositories. Here are three ways you can update to use the new key.

Update the puppetlabs-release packages

If you are fetching Puppet software via apt or yum, then using one of the puppet-release, puppet5-release or puppet6-release packages this will be the easiest way to get the updated key.

SLES users need to manually update the key before using new release packages



On EL and Fedora




On Debian and Ubuntu




Update the key with Puppet


Here are some manifest snippets you can use to import the new GPG signing key with Puppet.


On EL, SLES and Fedora




On Debian and Ubuntu




Update the key manually


You can also update the key manually on your servers.


On EL, SLES and Fedora




On Debian and Ubuntu




If you have any questions, feel free to ask on #puppet on the Puppet Community Slack, or the puppet-users Google group.


Eric Griswold is a release engineer at Puppet.


Learn more


Puppet by Perforce gives IT operations teams back their time and offers peace of mind with infrastructure automation that enables security and compliance.
LegalPrivacy PolicyTerms of UseSecurity
© 2022 Puppet, Inc., a Perforce company