TLS settings not reflecting on some of the servers in main.cf

[ShobhitGoel95]

Affected Puppet, Ruby, OS and module versions/distributions

• Puppet: 5.5
• Ruby: 2.5.1p57
• Distribution: Ubuntu 18.04 (Debian)
• Module version: 0.2.0

What are you seeing:

We are not getting the TLS entries in our main.cf for some of the servers. I have checked that ssl-certs package is installed and the snake oil.pem and key file is there in the respective directory. The entries I am talking about is this:

biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h
readme_directory = no
# See http://www.postfix.org/COMPATIBILITY_README.html -- default to 2 on
# fresh installs.
compatibility_level = 2
# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

What behaviour did you expect instead

We want these entries should be there in the main.cf file.

Any additional information you'd like to impart

I have checked the entire module for postfix but didn't find any file who is setting up these entries. Even though they are working fine for some of the servers but why not working for others.

[kenyon]

You can use postfix::config for these settings, as shown in the examples: https://github.com/voxpupuli/puppet-postfix/blob/master/REFERENCE.md#postfixconfig

[ShobhitGoel95]

Thanks Kenyon. But as per our code we are not using postfix::config for any smtp_tls settings and it's working for some of our servers. I just wanted to know is there anything in the postfix module which is setting all these settings by itself ? Or may be any other service that you think can impact this piece of code?

[kenyon]

You may read the code, but I don't see anything in this module that would manage those settings.