Ask Your Question

Deactivating a node

asked 2016-12-20 01:20:08 -0600

ankh2054 gravatar image

Running Puppet Server open source with Puppet DB 4.8

I recently changed the name of one of my servers and now have two instances of the same machine on puppetdb. I am trying to remove the NODE by dong the following commands but it fails with an error.

puppet node deactivate

Error: SSL_connect returned=1 errno=0 state=error: certificate verify failed: [certificate revoked for /CN=puppetdbserver]
Error: Try 'puppet help node deactivate' for usage
edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted

answered 2016-12-20 22:29:16 -0600

lupin gravatar image

updated 2016-12-20 22:29:31 -0600

What you can do is clean up the cert of that node in the master and then re-create the ssl cert on agent.

puppet cert clean <node_name>  # on master
rm -rf /etc/pupppetlabs/puppet/ssl # on node agent
puppet agent -t # on agent

sign the cert again on master.

edit flag offensive delete link more


thanks for the answer. I have already cleaned the cert but I still have not hosts showing in puppetdb.

ankh2054 gravatar imageankh2054 ( 2016-12-21 02:37:39 -0600 )edit

There's a option of puppetdb that you can set to clean the old stuff in puppetdb when it's retire. However, looking at your case you're not really retiring since it still exist as different server with same name, so I think it will re-appear again.

lupin gravatar imagelupin ( 2016-12-21 12:11:17 -0600 )edit

lupin gravatar imagelupin ( 2016-12-21 12:11:27 -0600 )edit

when I try that I get the error mentioned in the above post.

ankh2054 gravatar imageankh2054 ( 2016-12-22 01:18:36 -0600 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower


Asked: 2016-12-20 01:20:08 -0600

Seen: 752 times

Last updated: Dec 20 '16