search for: waitforcert

...# puppetd --version 0.25.5 # uname -a Linux hostname.domain 2.6.16-xenU #1 SMP Mon May 28 03:41:49 SAST 2007 i686 i686 i386 GNU/Linux But I keep facing some timeout from puppetd: warning: peer certificate won''t be verified in this SSL session Exiting; failed to retrieve certificate and waitforcert is disabled Puppetmaster is running on autosign, and I can see in the puppetmaster logs that the puppets are actually able to connect and request a certificate: info: Could not find certificate for ''hostname.domain'' But, nothing else seems to happens on puppetmaster side and th...

...e second run started to fail and i have this message: [root@atlcnag0 ~]# puppetd --test err: Could not request certificate: Retrieved certificate does not match private key; please remove certificate from server and regenerate it with the current key Exiting; failed to retrieve certificate and waitforcert is disabled [root@atlcnag0 ~]# puppetd --test --waitforcert 5 err: Could not request certificate: Retrieved certificate does not match private key; please remove certificate from server and regenerate it with the current key notice: Run of Puppet configuration client already in progress; skippi...

...t warning: peer certificate won''t be verified in this SSL session notice: Did not receive certificate notice: Set to run ''one time''; exiting with no certificate Server: puppetca --generate client.here.there Generating certificate for client.here.there Client: puppetd --waitforcert 60 --test warning: peer certificate won''t be verified in this SSL session err: Could not request certificate: Certificate retrieval failed: Certificate request does not match existing certificate; run ''puppetca --clean moonstone.esd.mun.ca''. Server: puppetca --list clie...

...ow the "World''s simplest puppet tutorial". On server I created the files: /etc/puppet/manifests/site.pp /etc/puppet/manifests/classes/sudo.pp I started the puppet-master and from the logs looked good On the client, I then did the following: puppetd --server canopus.unm.edu --waitforcert 60 --test info: Creating a new certificate request for uriel.unm.edu info: Creating a new SSL key at /var/lib/puppet/ssl/private_keys/uriel.unm.edu.pem warning: peer certificate won''t be verified in this SSL session. notice: No certificates; exiting # On the server, I see a certificate wa...

I can''t get a new client working with my puppet master. When I try to run ''puppet agent --test'' on the client, I get err: Could not request certificate: Connection refused - connect(2) Exiting; failed to retrieve certificate and waitforcert is disabled I can''t telnet from the client to the server on port 8140. There are no firewalls between the 2 servers. I''ve turned off iptables and ip6tables on both servers. The times are sync''d. Both servers can ping each other by IP address and hostname. Doing a net...

...var/lib/puppet/ssl/private_keys]: Autorequiring File[/var/lib/puppet/ssl] debug: /File[/var/lib/puppet/ssl/certs]: Autorequiring File[/var/lib/puppet/ssl] debug: Finishing transaction 23595599384520 err: Could not request certificate: execution expired Exiting; failed to retrieve certificate and waitforcert is disabled How to resolve this, please guide me guys. -Ganesh. Did I learn something today? If not, I wasted it. -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com. To...

...[root@FP2 ~]$ puppet agent -t Info: Creating a new SSL key for fp2 Info: Caching certificate for ca Info: Creating a new SSL certificate request for fp2 Info: Certificate Request fingerprint (SHA1): 35:51:A0:12:CF:2E:F7:73:22:C3:5E:51:DC:03:AF:4C:FC:54:5C:10 Exiting; no certificate found and waitforcert is disabled MASTER [root@puppet centos]# puppet cert list "fp2" (SHA1) 35:51:A0:12:CF:2E:F7:73:22:C3:5E:51:DC:03:AF:4C:FC:54:5C:10 [root@puppet centos]# puppet cert sign fp2 Notice: Signed certificate request for fp2 Notice: Removing file Puppet::SSL::CertificateRequest fp2 at '...

Hi All, I would like to pick your brains as to the best way to configure the below senario within puppet. I am currently configuring puppet for our environment and have seperated development/back office from production through configuring roles for each server to identify them as such. What i need to be able todo is have the production servers only update outside of office hours, but have the

...Puppet client whose certificate was revoked on the Puppet master. The original certificate was revoked using the command: # puppet cert --revoke el5-puptest-2.localdomain I have deleted the /var/lib/puppet/ssl directory on the client, and issued the following command: # puppet agent --test --waitforcert=20 This produces the following result: [root@el5-puptest-3 ~]# *puppet agent --test --waitforcert=20* info: Creating a new SSL key for el5-puptest-3.localdomain info: Caching certificate for ca info: Creating a new SSL certificate request for el5-puptest-3.localdomain info: Certificate Request f...

Hello Everybody, We need to open some ports on the target machine, let''s say 694:udp and 3306:tcp I couldn''t find any documentation how can I do this with Puppet. What the best way of doing this? Thank you Dmytro -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to

Just installed Puppet 2.6.4 on Ubuntu 10.10 I was trying to restart the puppet agent but got the following error and the agent didn''t run: $ sudo puppetd --server server.domain.com --waitforcert 60 --test err: Could not retrieve catalog from remote server: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed warning: Not using cache on failed catalog err: Could not retrieve catalog; skipping run I have the puppet master running on "server.do...

Hi I am looking for quite a while now to run Puppet inside a vserver. The installation worked perfectly, but when I run a test I get this message: smb-configmaster / # puppetd --server 192.168.0.144 --waitforcert 60 --test /usr/lib/ruby/site_ruby/1.8/puppet/network/client/ca.rb:31:in `request_cert'': Certificate retrieval failed: Could not connect to 192.168.0.144 on port 8140 (Puppet::Error) from /usr/bin/puppetd:345 What can I do to make puppet run inside a vserver? Norbert

So set up new node, ran on the client puppetd --server puppetmaster --waitforcert 60 --test on the puppetmaster itself I ran puppetca --list saw the hostname and then ran: puppetca --sign hostname.domain.com and on the puppet node itself I went back and ran puppetd -tv and get the following error: err: Could not retrieve catalog from remote server: certificate verify fai...

...g to connect my pclient to pmaster. I checked my hostnames for both the pclient and the pmaster: [root@pclient etc]# hostname -f pclient.domain [root@pmaster etc]# hostname -f pmaster.domain I tried requesting for certificate: [root@pclient etc]# puppetd --server pmaster.domain --no-daemonize -- waitforcert 60 --verbose and all I get is the error message saying no route to host. What seems to be the problem? I saw a related discussion but I think I have the right server name. I''m running Puppet 0.25.5 retrieved from the EPEL package, and the OS is CentOS 5. Thanks, James -- You received...

...lient } node backuppc { include munin::client } node munin { include munin::host include munin::client } I followed all the other instructions given in munin and common modules READMEs. But when I run on the master the following command: puppetd --server puppet.cm.auf --waitforcert 60 --test all is fine, but I can''t see any exported resource in the database. But if I add the following line in the nodes.pp file for the node representing the puppet master munin::plugin { df_abs: } so that it looks like this node puppet { include munin::client m...

...lem with puppet and windows weeks ago. With the new Version 2.7.12 those problems were fixed. But now I don''t get puppet to work. I installed puppet as explained here: http://projects.puppetlabs.com/projects/1/wiki/Puppet_Windows It worked so far. But when I start puppet agent --test --waitforcert 10 I get the following error message: ----------------------------------------------------------------------------------------------------------------------------------- err: Could not request certificate: getaddrinfo: Die Speichersteuerbl÷cke wurden zerst÷rt. Canceling startup -----------------...

...s in the past) and all the certs were valid. Although it was giving an error about a cert I could not identify. So I tried: puppetca --revoke hostname puppetca --clean hostname restart puppetmaster puppetca --list --all (host does not show up - good) On client re-issue puppetd --server puppet --waitforcert 30 --test Error is : err: Could not retrieve catalog: Certificates were not trusted: sslv3 alert certificate revoked So how do I get rid of it? I can''t find a cert anywhere with either a valid cert or revoked.. Did I do this wrong? How do you remove and re- add a host? thanks ~J~ --...

I am trying to use puppet to configure Amazon EC2 instances. The server is my own box at home. Both server and clients are Ubuntu 8.04 running puppet 0.24.5. On the client when I run: puppetd --server myserver.com --waitforcert 60 --test I get a cert to sign on the server. I sign it and run the command above again on the client. But then I get 3 errors similar to this: warning: Certificate validation failed; considering using the certname configuration option err: /File[/var/lib/puppet/lib]: Failed to generate additiona...

Hello there, I have a problem while I''m trying to puppetize a client, I get this error: err: Could not request certificate: Certificate retrieval failed: Certificate request does not match existing certificate; run ''puppetca --clean puppetclienttest.sl.ss''. I checked -Shutdown puppet on client/server side, delete ssl/ dir to regenerate certificate. -Be sure that the

...the puppet-server package, but I end up getting into certificate problems every time. The initial cert draws complaints, so I delete it and clean the certificate from the master, but then the systems will not connect under any circumstances: # puppet agent -t Exiting: no certificate found and waitforcert is disabled There''s no request on the master (either this or the other). Thoughts? Puppet 3.0.1 from puppetlabs rpms on Fedora 17. -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To view this discussion on the web visit http...