Displaying 20 results from an estimated 93 matches for "waitforcert".
2011 Mar 11
6
failed to retrieve certificate on Amazon EC2
...# puppetd --version
0.25.5
# uname -a
Linux hostname.domain 2.6.16-xenU #1 SMP Mon May 28 03:41:49 SAST 2007 i686
i686 i386 GNU/Linux
But I keep facing some timeout from puppetd:
warning: peer certificate won''t be verified in this SSL session
Exiting; failed to retrieve certificate and waitforcert is disabled
Puppetmaster is running on autosign, and I can see in the puppetmaster logs
that the puppets are actually able to connect and request a certificate:
info: Could not find certificate for ''hostname.domain''
But, nothing else seems to happens on puppetmaster side and th...
2010 Jun 29
2
CA issues...
...e second run started to fail and i have this message:
[root@atlcnag0 ~]# puppetd --test
err: Could not request certificate: Retrieved certificate does not match
private key; please remove certificate from server and regenerate it with
the current key
Exiting; failed to retrieve certificate and waitforcert is disabled
[root@atlcnag0 ~]# puppetd --test --waitforcert 5
err: Could not request certificate: Retrieved certificate does not match
private key; please remove certificate from server and regenerate it with
the current key
notice: Run of Puppet configuration client already in progress; skippi...
2008 Nov 19
2
Could not request certificate: Certificate does not match private key
...t
warning: peer certificate won''t be verified in this SSL session
notice: Did not receive certificate
notice: Set to run ''one time''; exiting with no certificate
Server:
puppetca --generate client.here.there
Generating certificate for client.here.there
Client:
puppetd --waitforcert 60 --test
warning: peer certificate won''t be verified in this SSL session
err: Could not request certificate: Certificate retrieval failed:
Certificate request does not match existing certificate; run ''puppetca
--clean moonstone.esd.mun.ca''.
Server:
puppetca --list
clie...
2007 Mar 22
6
Starting out with lots of problems.
...ow the "World''s simplest puppet tutorial".
On server I created the files:
/etc/puppet/manifests/site.pp
/etc/puppet/manifests/classes/sudo.pp
I started the puppet-master and from the logs looked good
On the client, I then did the following:
puppetd --server canopus.unm.edu --waitforcert 60 --test
info: Creating a new certificate request for uriel.unm.edu
info: Creating a new SSL key at
/var/lib/puppet/ssl/private_keys/uriel.unm.edu.pem
warning: peer certificate won''t be verified in this SSL session.
notice: No certificates; exiting
#
On the server, I see a certificate wa...
2012 Mar 13
5
Can't send certificate request
I can''t get a new client working with my puppet master. When I try to run
''puppet agent --test'' on the client, I get
err: Could not request certificate: Connection refused - connect(2)
Exiting; failed to retrieve certificate and waitforcert is disabled
I can''t telnet from the client to the server on port 8140. There are no
firewalls between the 2 servers. I''ve turned off iptables and ip6tables on
both servers. The times are sync''d. Both servers can ping each other by IP
address and hostname.
Doing a net...
2012 Jul 10
2
err: Could not request certificate: execution expired
...var/lib/puppet/ssl/private_keys]: Autorequiring
File[/var/lib/puppet/ssl]
debug: /File[/var/lib/puppet/ssl/certs]: Autorequiring
File[/var/lib/puppet/ssl]
debug: Finishing transaction 23595599384520
err: Could not request certificate: execution expired
Exiting; failed to retrieve certificate and waitforcert is disabled
How to resolve this, please guide me guys.
-Ganesh.
Did I learn something today? If not, I wasted it.
--
You received this message because you are subscribed to the Google Groups "Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com.
To...
2013 Feb 11
27
Certificate verify fails without indications
...[root@FP2 ~]$ puppet agent -t Info: Creating a new SSL key for fp2 Info:
Caching certificate for ca Info: Creating a new SSL certificate request for
fp2 Info: Certificate Request fingerprint (SHA1):
35:51:A0:12:CF:2E:F7:73:22:C3:5E:51:DC:03:AF:4C:FC:54:5C:10 Exiting; no
certificate found and waitforcert is disabled
MASTER
[root@puppet centos]# puppet cert list "fp2" (SHA1)
35:51:A0:12:CF:2E:F7:73:22:C3:5E:51:DC:03:AF:4C:FC:54:5C:10 [root@puppet
centos]# puppet cert sign fp2 Notice: Signed certificate request for fp2
Notice: Removing file Puppet::SSL::CertificateRequest fp2 at
'...
2009 Jun 16
4
Schedule puppet runs
Hi All,
I would like to pick your brains as to the best way to configure the
below senario within puppet.
I am currently configuring puppet for our environment and have
seperated development/back office from production through configuring
roles for each server to identify them as such.
What i need to be able todo is have the production servers only update
outside of office hours, but have the
2013 Oct 04
2
Issue retrieving new certificate on host after original certificate was revoked
...Puppet client whose
certificate was revoked on the Puppet master.
The original certificate was revoked using the command:
# puppet cert --revoke el5-puptest-2.localdomain
I have deleted the /var/lib/puppet/ssl directory on the client, and issued
the following command:
# puppet agent --test --waitforcert=20
This produces the following result:
[root@el5-puptest-3 ~]# *puppet agent --test --waitforcert=20*
info: Creating a new SSL key for el5-puptest-3.localdomain
info: Caching certificate for ca
info: Creating a new SSL certificate request for el5-puptest-3.localdomain
info: Certificate Request f...
2010 Dec 14
11
Configure firewall with Puppet
Hello Everybody,
We need to open some ports on the target machine, let''s say
694:udp and 3306:tcp
I couldn''t find any documentation how can I do this with Puppet. What
the best way of doing this?
Thank you
Dmytro
--
You received this message because you are subscribed to the Google Groups "Puppet Users" group.
To post to this group, send email to
2011 Jan 13
5
Problem restarting the agent
Just installed Puppet 2.6.4 on Ubuntu 10.10
I was trying to restart the puppet agent but got the following error
and the agent didn''t run:
$ sudo puppetd --server server.domain.com --waitforcert 60 --test
err: Could not retrieve catalog from remote server: SSL_connect
returned=1 errno=0 state=SSLv3 read server certificate B: certificate
verify failed
warning: Not using cache on failed catalog
err: Could not retrieve catalog; skipping run
I have the puppet master running on "server.do...
2007 Aug 06
2
Puppet in vserver
Hi
I am looking for quite a while now to run Puppet inside a vserver.
The installation worked perfectly, but when I run a test I get this
message:
smb-configmaster / # puppetd --server 192.168.0.144 --waitforcert 60
--test /usr/lib/ruby/site_ruby/1.8/puppet/network/client/ca.rb:31:in
`request_cert'': Certificate retrieval failed: Could not connect to
192.168.0.144 on port 8140 (Puppet::Error)
from /usr/bin/puppetd:345
What can I do to make puppet run inside a vserver?
Norbert
2011 Mar 24
3
err: Could not retrieve catalog from remote server: certificate verify failed
So set up new node, ran on the client
puppetd --server puppetmaster --waitforcert 60 --test
on the puppetmaster itself I ran
puppetca --list
saw the hostname
and then ran:
puppetca --sign hostname.domain.com
and on the puppet node itself I went back and ran puppetd -tv
and get the following error:
err: Could not retrieve catalog from remote server: certificate verify fai...
2011 Jan 10
7
Could not request certificate: No route to host?
...g to connect my pclient to
pmaster.
I checked my hostnames for both the pclient and the pmaster:
[root@pclient etc]# hostname -f
pclient.domain
[root@pmaster etc]# hostname -f
pmaster.domain
I tried requesting for certificate:
[root@pclient etc]# puppetd --server pmaster.domain --no-daemonize --
waitforcert 60 --verbose
and all I get is the error message saying no route to host. What seems
to be the problem? I saw a related discussion but I think I have the
right server name.
I''m running Puppet 0.25.5 retrieved from the EPEL package, and the OS
is CentOS 5.
Thanks,
James
--
You received...
2008 Nov 06
1
introduction with david's munin module question
...lient
}
node backuppc {
include munin::client
}
node munin {
include munin::host
include munin::client
}
I followed all the other instructions given in munin and common modules
READMEs.
But when I run on the master the following command:
puppetd --server puppet.cm.auf --waitforcert 60 --test
all is fine, but I can''t see any exported resource in the database.
But if I add the following line in the nodes.pp file for the node
representing the puppet master
munin::plugin { df_abs: }
so that it looks like this
node puppet {
include munin::client
m...
2012 Mar 21
3
Puppet 2.7.12 on Windows
...lem with puppet and windows weeks ago.
With the new Version 2.7.12 those problems were fixed.
But now I don''t get puppet to work.
I installed puppet as explained here:
http://projects.puppetlabs.com/projects/1/wiki/Puppet_Windows
It worked so far.
But when I start
puppet agent --test --waitforcert 10
I get the following error message:
-----------------------------------------------------------------------------------------------------------------------------------
err: Could not request certificate: getaddrinfo: Die
SpeichersteuerblĂ·cke wurden zerstĂ·rt.
Canceling startup
-----------------...
2010 Apr 21
3
revoked host can't be re-added?
...s in the past) and all the certs were valid. Although it was
giving an error about a cert I could not identify. So I tried:
puppetca --revoke hostname
puppetca --clean hostname
restart puppetmaster
puppetca --list --all
(host does not show up - good)
On client re-issue puppetd --server puppet --waitforcert 30 --test
Error is :
err: Could not retrieve catalog: Certificates were not trusted: sslv3
alert certificate revoked
So how do I get rid of it? I can''t find a cert anywhere with either a
valid cert or revoked.. Did I do this wrong? How do you remove and re-
add a host?
thanks
~J~
--...
2008 Oct 14
2
Certificate validation failing
I am trying to use puppet to configure Amazon EC2 instances. The
server is my own box at home. Both server and clients are Ubuntu 8.04
running puppet 0.24.5.
On the client when I run:
puppetd --server myserver.com --waitforcert 60 --test
I get a cert to sign on the server. I sign it and run the command
above again on the client. But then I get 3 errors similar to this:
warning: Certificate validation failed; considering using the certname
configuration option
err: /File[/var/lib/puppet/lib]: Failed to generate additiona...
2011 Apr 18
4
Certificate request does not match existing certificate
Hello there,
I have a problem while I''m trying to puppetize a client, I get this
error:
err: Could not request certificate: Certificate retrieval failed:
Certificate request does not match existing certificate; run ''puppetca
--clean puppetclienttest.sl.ss''.
I checked
-Shutdown puppet on client/server side, delete ssl/ dir to regenerate
certificate.
-Be sure that the
2012 Dec 12
4
Converting puppet client to servr
...the puppet-server
package, but I end up getting into certificate problems every time.
The initial cert draws complaints, so I delete it and clean the certificate
from the master, but then the systems will not connect under any
circumstances:
# puppet agent -t
Exiting: no certificate found and waitforcert is disabled
There''s no request on the master (either this or the other).
Thoughts?
Puppet 3.0.1 from puppetlabs rpms on Fedora 17.
--
You received this message because you are subscribed to the Google Groups "Puppet Users" group.
To view this discussion on the web visit http...