No signing request is sent to the master. Cert mismatch..

asked 2015-02-19 14:03:56 -0600

shujol gravatar image

I've been using the walk through on EC2 installation available here:

I can spin up a node fine using node_aws create.

I can install puppet using the answer file as show in the video.

The video walks through using puppet cert list and puppet cert sign --all on the master.

I do this, but the list shows no pending requests.

If I try puppet agent --test on the agent it says no cert found

On the console I see a new node request and I can approve it there, so I did.

I run puppet agent --test and I get Error: Could not request certificate: The certificate retrieved from the master does not match the agent's private key.

I checked DNS... I added an entry to /etc/hosts for puppet (once after and once before installing the agent), the FQDN in the answers file looks up fine so no /etc/hosts record is need for that.

When I try to walk through the steps the error gives to resolve the issue, puppet cert clean... the master says could not find serial number for...

This is all in a test environment of my own on AWS and everything is set to allow all traffic from anywhere, including the VPC and ec2 security groups, and outbound seems to be fine too.

Not sure what I'm doing wrong :-(

edit retag flag offensive close merge delete