SSL certs for a masterless foreman


I am currently running:

  • foreman 2.0.1
  • katello

I am currently testing the possibility of running puppet masterless on nodes. I have been able to setup puppet masterless and send reports to our puppetdb server, but wondering how to go about setting up the SSL certs to allow for foreman reporting.

Currently my foreman ssl seems to use katello certs, and the client on the foreman server uses:
:ssl_ca: “/etc/pki/katello/puppet/puppet_client_ca.crt”
:ssl_cert: “/etc/pki/katello/puppet/puppet_client.crt”
:ssl_key: “/etc/pki/katello/puppet/puppet_client.key”
which appears to be katello creation.

Is there a way to either easy enroll the nodes with the SSL, or migrate the certs to use the existing puppet certs for ease of setup?