Windows Puppet agent refusing to register with the puppet master [closed]

asked 2016-11-11 16:27:09 -0600

OUberLord gravatar image

I'm attempting to begin to test the waters and learn to use Puppet. My main goal is to learn how it use Puppet in conjunction with a Windows server. To this end I've made a pair of VMs; a CentOS 7 VM and a Svr 2012 R2 VM. I've installed puppet onto the CentOS server, and as far as I can tell it seems to be working properly.

I've installed the puppet agent onto the Windows box, however I'm getting nowhere. The puppet master is reachable via DNS at tdsptcppup01.domain.lc, and is reachable from the Windows server if I try to telnet to port 8140. However, when I try to get started on getting the cert for the agent I am stuck here:

C:\Windows\system32>puppet agent --server tdsptcppup01.domain.lc --waitforcert 60 --test
Notice: Did not receive certificate
Notice: Did not receive certificate
Notice: Did not receive certificate

At this point I run "puppet cert --list" on the master, but am not getting anything in the results. It's as if the cert request simply isn't making it to the master at all.

I've tried checking that the agent is presenting the correct certname (puppet config print certname), I've tried restarting services / VMs on both sides, I've tried deleting the C:\ProgramData\PuppetLabs\puppet\etc\ssl directory and regenerating it, and cannot get past this spot. What could I be missing?

edit retag flag offensive reopen merge delete

Closed for the following reason question is off-topic or not relevant by OUberLord
close date 2016-11-18 18:00:20.754440

Comments

I don't know if it's a mistake, but the command on the master to check for unsigned certificates is `puppet cert list`. Also, `puppet cert list --all` would show if the certificate had already been signed.

MichaelSmith gravatar imageMichaelSmith ( 2016-11-12 12:21:12 -0600 )edit

It seems like the documentation I was looking at was older, I've since begun to use the simpler "puppet cert list --all". However, I only see once cert there, for the hostname of the master. It's as if the server isn't getting the cert requests at all.

OUberLord gravatar imageOUberLord ( 2016-11-14 13:51:32 -0600 )edit