Ask Your Question

Certificate errors

asked 2013-09-23 08:29:00 -0600

Quindoo gravatar image

updated 2013-09-24 02:48:41 -0600

Dear Puppet,

I am new to using Puppet.

I managed to setup a puppet-agent and a puppet-master and sign a certificate between them. However, when I try to start the puppet agent I get the following error:

image description

I've deleted the certification multiple times with the puppet cert clean --all and the rm -rf /var/lib/puppet/ssl/* commands and managed to get a new certificate between the puppet-agent and puppet-master.

But when I try to do the puppet agent --server... command again i get the error message again.

I followed the steps from the book: Pro Puppet but got ... (more)

edit retag flag offensive close merge delete


It's best not to post images of text, make it's hard to read and cut and paste into an answer.

LindaLoo gravatar imageLindaLoo ( 2013-09-23 13:12:42 -0600 )edit

Please try to format the commands in your question as code. Simply highlight the commands and hit the 'code' button, or indent the text with 4 space characters or a tab.

stefanlasiewski gravatar imagestefanlasiewski ( 2014-06-26 13:07:27 -0600 )edit

2 Answers

Sort by » oldest newest most voted

answered 2013-09-23 13:12:08 -0600

LindaLoo gravatar image

updated 2013-09-24 10:31:38 -0600

Try using --server puppet-master.bod-klp.glasoperator.local instead of puppet-master.glasoperator.local

puppet-master.bod-klp.glasoperator.local is the name in the cert and connecting using the other name which is not in the cert appears to be causing the error.

edit flag offensive delete link more


Thanks for the quick reply. I'm currently not at the office to test it out but I will try it out tomorrow morning. However, I've changed every file ...(more)

Quindoo gravatar imageQuindoo ( 2013-09-23 14:45:46 -0600 )edit

I received the same error after following your suggestion (see last screenshot in original message). What could be the problem? The domain shows puppet-master.glasoperator.local when using facter fqdn

Quindoo gravatar imageQuindoo ( 2013-09-24 02:50:17 -0600 )edit

answered 2013-09-24 16:07:15 -0600

Quindoo gravatar image

updated 2013-09-25 03:34:08 -0600


Here is the error in text:

[root@puppet-agent bram]# puppet agent -–server puppet-master.bod-klp.glasoperator.local --test

Warning: Unable to fetch my node definition, but the agent run will continue: Warning: SSLconnect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed: [self signed certificate in certificate chain for /CN=Puppet CA: puppet-master.bod-klp.glasoperator.local] Info: Retrieving plugin Error: /File[/var/lib/puppet/lib]: Failed to generate additional resources using ‘evalgenerate: SSLconnect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed: [self signed certificate in certificate chain for ... (more)

edit flag offensive delete link more


You should at this text to the question above, not post it down here as an answer.

stefanlasiewski gravatar imagestefanlasiewski ( 2014-06-26 13:05:28 -0600 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower


Asked: 2013-09-23 08:29:00 -0600

Seen: 2,318 times

Last updated: Sep 25 '13