Ask Your Question
0

Issues with puppet 4 migration

asked 2017-06-22 02:18:44 -0500

marsu1212 gravatar image

Hi,

I just upgraded my puppet server to debian stretch (and so puppet 4), also my clients. I have an issue with all nodes which are not converging with error on client's side:

Warning: Unable to fetch my node definition, but the agent run will continue: Warning: SSL_connect returned=1 errno=0 state=error: certificate verify failed: [self signed certificate in certificate chain for /CN=Puppet CA: MYPUPPETSERVER] Info: Retrieving pluginfacts Error: /File[/var/lib/puppet/facts.d]: Failed to generate additional resources using 'eval_generate': SSL_connect returned=1 errno=0 state=error: certificate verify failed: [self signed certificate in certificate chain for /CN=Puppet CA: MYPUPPETSERVER]

and on puppetmaster: [2017-06-22 09:13:11] ERROR OpenSSL::SSL::SSLError: SSL_accept returned=1 errno=0 state=unknown state: tlsv1 alert unknown ca /usr/lib/ruby/vendor_ruby/puppet/network/http/webrick.rb:32:in `accept' /usr/lib/ruby/vendor_ruby/puppet/network/http/webrick.rb:32:in `block (2 levels) in listen' /usr/lib/ruby/2.3.0/webrick/server.rb:296:in `block in start_thread'

Could you please help me to troobleshoot ? Many thanks

edit retag flag offensive close merge delete

Comments

I'm guessing you want to reuse the old certificates? Can it be that the ssl dir just has changed I think puppet 3 was /etc/puppet/ssl and now it's /etc/puppetlabs/puppet/ssl so maybe change the value in your puppet.conf to point to the old directory or copy the old over the new?

negast gravatar imagenegast ( 2017-06-22 06:45:35 -0500 )edit

1 Answer

Sort by ยป oldest newest most voted
0

answered 2017-06-28 00:22:08 -0500

joshc gravatar image

The puppet_agentmodule handles the change in ssl directories, recommend taking a look: https://forge.puppet.com/puppetlabs/p...

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2017-06-22 02:18:44 -0500

Seen: 59 times

Last updated: Jun 28