The webserver.conf file configures the Puppet Server webserver service. For an overview, see Puppet Server Configuration. To configure the mount points for the Puppet administrative API web applications, see the web-routes.conf documentation.


The webserver.conf file looks something like this:

# Configure the webserver.
webserver: {
    # Log webserver access to a specific file.
    access-log-config: /etc/puppetlabs/puppetserver/request-logging.xml
    # Require a valid certificate from the client.
    client-auth: need
    # Listen for HTTPS traffic on all available hostnames.
    # Listen for HTTPS traffic on port 8140.
    ssl-port: 8140

These are the main values for managing a Puppet Server installation. For further documentation, including a complete list of available settings and values, see Configuring the Webserver Service.

By default, Puppet Server is configured to use the correct Puppet primary server and certificate authority (CA) certificates. If you're using an external CA and providing your own certificates and keys, make sure the SSL-related parameters in webserver.conf point to the correct file.

webserver: {
    ssl-cert    : /path/to/server.pem
    ssl-key     : /path/to/server.key
    ssl-ca-cert : /path/to/ca_bundle.pem
    ssl-cert-chain : /path/to/ca_bundle.pem
    ssl-crl-path : /etc/puppetlabs/puppet/ssl/crl.pem
How helpful was this page?

If you leave us your email, we may contact you regarding your feedback. For more information on how Puppet uses your personal information, see our privacy policy.

Puppet sites use proprietary and third-party cookies. By using our sites, you agree to our cookie policy.