Ask Your Question
0

certificate revoked for /CN=puppet01-idc.ap.freescale.net]

asked 2015-10-08 05:58:30 -0500

ankitjain@freescale.com gravatar image

Hi All,

lc2613-zin45 is my client node & puppet01-idc is my puppet master node. I tried to sign/generate cerifiate multiple times but getting the following error.

Error: /File[/var/lib/puppet/facts.d]: Failed to generate additional resources using 'evalgenerate': SSLconnect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed: [certificate revoked for /CN=puppet01-idc.ap.freescale.net] Error: /File[/var/lib/puppet/facts.d]: Could not evaluate: Could not retrieve file metadata for puppet://puppet01-idc.ap.freescale.net/pluginfacts: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed: [certificate revoked for /CN=puppet01-idc.ap.freescale.net]

Can anyone know what could be wrong here. Its very urgent for us to solve this issue.

Thanks

Ankit

edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted
0

answered 2015-10-09 06:52:54 -0500

on the master do a:

puppet cert clean lc2613-zin45

on lc2613-zin45: rm -rf /var/lib/puppet/ssl

then on lc2613-zin45: puppet agent -t --server puppet01-idc --waitforcert 60

then on puppet master do a puppet cert list - hopefully should see the cert awaiting signing, then do a:

puppet cert sign <certname>

Cheers Stuart

edit flag offensive delete link more

Comments

also check that the time on the machines is in sync

Cristian Falcas gravatar imageCristian Falcas ( 2015-10-09 15:59:48 -0500 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2015-10-08 05:58:30 -0500

Seen: 224 times

Last updated: Oct 09 '15