Ask Your Question

Agent upgraded to new box, is that will be considered new agent or old agent

asked 2013-10-29 12:13:48 -0600

I have agent installed in node 1 and later the node1 upgraded to new box with same ip, hostname.. reinstalled the puppet agent in new box. Is that will be considered as new agent or same old agent in master. Since i didnt receive new agent certification

edit retag flag offensive close merge delete



Did you move /etc/puppetlabs/puppet/ssl from the old one to the new one? If not, you'll want to `puppet cert clean` on the master, restart the puppetmaster ...(more)

Celia gravatar imageCelia ( 2013-10-29 13:44:44 -0600 )edit

Thank you..

sasikala chinnasamy gravatar imagesasikala chinnasamy ( 2013-10-30 10:23:13 -0600 )edit

1 Answer

Sort by ยป oldest newest most voted

answered 2013-10-29 15:57:54 -0600

lavaman gravatar image

Puppet does all authentication and identification of hosts via the SSL certs. If you installed puppet on a new box with the same hostname and did not keep the old certificate, the node name in your manifests or ENC will still be correct, but the SSL handshake between the master and the client will fail due to a cert mismatch.

You can move the old client cert in /var/lib/puppet/ssl (/etc/puppetlabs/puppet/ssl for PE iirc) to the new machine, or you can clean up the old client cert on the master and re-register the agent.

To ... (more)

edit flag offensive delete link more


Thanks Lavaman

sasikala chinnasamy gravatar imagesasikala chinnasamy ( 2013-10-30 10:22:54 -0600 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower


Asked: 2013-10-29 12:13:48 -0600

Seen: 39 times

Last updated: Oct 29 '13