how can i remove a host from puppet master

asked 2014-02-19 16:29:36 -0600

rlac gravatar image

i am decommissioning few Linux servers that are now registered with puppet master and I need to remove them from the master puppet database

answered 2014-02-19 18:53:30 -0600

Stefan gravatar image

updated 2014-02-20 13:04:39 -0600

If you run PuppetDB use

puppet node deactivate <FQDN>

to decomission a node. It is also a good idea to run puppet node clean <FQDN> on your master to revoke the previously signed certificates.


The puppet node deactivate command is only available if you've installed the puppetdb-terminus package which is necessary to integrate Puppet with PuppetDB. If you do not run PuppetDB, the puppet master has basically no idea about active clients or when an agent last checked into your master. In this scenario a node either has a valid certificate and is able to talk to your ... (more)

it did not work! I am new to puppet but I don't think we run puppetdb! [root@nagios01 manifests]# puppet node deactivate err: 'node' has no ...(more)

rlac gravatar imagerlac ( 2014-02-20 08:59:30 -0600 )edit

I need to remove these servers from puppet: [root@nagios01 ~]# puppet cert list --signed |grep dpssesbweb + (7B:37:0C:FD:8E:21:AA:B4:3F:61:42 ...(more)

rlac gravatar imagerlac ( 2014-02-20 09:01:08 -0600 )edit

I've updated my answer. You should be ok with just running `puppet node clean`

Stefan gravatar imageStefan ( 2014-02-20 13:05:44 -0600 )edit

I revoked the certificate from a few nodes but now it shows all the nodes with (certificate revoked)!! I did not revoke them!! [root@nagios01 puppet]# puppet cert list --all ...(more)

rlac gravatar imagerlac ( 2014-02-20 17:47:29 -0600 )edit

any chance you run `puppet cert clean --all` by accident? I have no idea why your certificates should be seens as revoked if you did not manually revoke them.

Stefan gravatar imageStefan ( 2014-02-20 18:30:14 -0600 )edit

Asked: 2014-02-19 16:29:36 -0600

Seen: 789 times

Last updated: Feb 20 '14