Certificate errors

asked 2013-09-23 08:29:00 -0500

Quindoo gravatar image

updated 2013-09-24 02:48:41 -0500

Dear Puppet,

I am new to using Puppet.

I managed to setup a puppet-agent and a puppet-master and sign a certificate between them. However, when I try to start the puppet agent I get the following error:

I've deleted the certification multiple times with the puppet cert clean --all and the rm -rf /var/lib/puppet/ssl/* commands and managed to get a new certificate between the puppet-agent and puppet-master.

But when I try to do the puppet agent --server... command again i get the error message again.

It's best not to post images of text, make it's hard to read and cut and paste into an answer.

LindaLoo gravatar imageLindaLoo ( 2013-09-23 13:12:42 -0500 )edit

Please try to format the commands in your question as code. Simply highlight the commands and hit the 'code' button, or indent the text with 4 space characters or a tab.

stefanlasiewski gravatar imagestefanlasiewski ( 2014-06-26 13:07:27 -0500 )edit

answered 2013-09-23 13:12:08 -0500

LindaLoo gravatar image

updated 2013-09-24 10:31:38 -0500

Try using --server puppet-master.bod-klp.glasoperator.local instead of puppet-master.glasoperator.local

puppet-master.bod-klp.glasoperator.local is the name in the cert and connecting using the other name which is not in the cert appears to be causing the error.

Thanks for the quick reply. I'm currently not at the office to test it out but I will try it out tomorrow morning. However, I've changed every file ...(more)

Quindoo gravatar imageQuindoo ( 2013-09-23 14:45:46 -0500 )edit

I received the same error after following your suggestion (see last screenshot in original message). What could be the problem? The domain shows puppet-master.glasoperator.local when using facter fqdn

Quindoo gravatar imageQuindoo ( 2013-09-24 02:50:17 -0500 )edit

answered 2013-09-24 16:07:15 -0500

Quindoo gravatar image

updated 2013-09-25 03:34:08 -0500


Here is the error in text:

[root@puppet-agent bram]# puppet agent -–server puppet-master.bod-klp.glasoperator.local --test

Warning: Unable to fetch my node definition, but the agent run will continue: Warning: SSLconnect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed: [self signed certificate in certificate chain for /CN=Puppet CA: puppet-master.bod-klp.glasoperator.local] Info: Retrieving plugin Error: /File[/var/lib/puppet/lib]: Failed to generate additional resources using ‘evalgenerate: SSLconnect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed: [self signed certificate in certificate chain for ... (more)

You should at this text to the question above, not post it down here as an answer.

stefanlasiewski gravatar imagestefanlasiewski ( 2014-06-26 13:05:28 -0500 )edit

Asked: 2013-09-23 08:29:00 -0500

