Displaying 20 results from an estimated 20000 matches similar to: "puppetca is unable to sign certificate"
2007 Nov 28
7
puppetrun failing: "connect'': tlsv1 alert unknown ca"
I''m trying to get puppetrun to work, without luck so far.
I have my puppetmaster and clients working fine with the clients polling
the master. Now I want to be able to force an update. Using version
0.23.2
On the client I set listen=true and created the namespaceauth.conf file.
Restarted puppetd and it appears fine.
On the master I run puppetrun as root and get
root@plane:/etc/puppet#
2007 Apr 02
3
Man pages
Folks,
I''ve been looking at creating a set of man pages for puppet and I''m
trying to come up with a reasonable hierarchy. I''d appreciate any
suggestions.
So far, here''s what I''ve come up with:
- puppet(1)
- puppetca(1)
- puppetdoc(1)
- puppetrun(1)
- puppetca.conf(5)
- puppetd.conf(5)
- puppetmasterd.conf(5)
- puppetd(8)
-
2007 Jul 03
7
CA migration
Anyone ever migrated the puppetca to a different host? What are the steps
that are involved?
2007 Dec 08
6
Creating certificates with puppetca with puppet.example.com as CommonName
Greetings!
As you undoubtedly know, the fixes for CVE 2007-5162 in ruby break
installations where puppetca has created certificates with a CommonName
different from the server's real hostname. The Puppet clients quite correctly
complains about hostname mismatch.
A number of better and worse solutions have been suggested for this problem,
especially in ticket #896. IMHO, there are two good
2006 Oct 18
19
Creating client certificates
I testing Puppet 0.19.3. If we decide to use it, we''d deploy it
across several thousand hosts. The method described for creating
client certificates described in the documentation - running
"puppetd --server <server> --waitforcert 60 --test" and "puppetca
--sign <client>" - is not practical for our installation. I''ve
tried creating
2012 Nov 29
7
Puppet CA corruption
Hello everyone,
Just getting my first puppet master set up and I am having a problem that I
just do not know how to get past. For some reason, my certificate store
keeps getting corrupted. Basically what happens is that the server will
issue itself a valid certificate (after removing the ''bad'' cert) and will
run just fine. When I start puppetDB (I am pretty sure it happens
2011 Mar 31
5
puppetca and /etc/puppet/ssl
All,
I have --confdir=/etc/puppet/common in my /etc/init.d/puppetmaster and
/etc/init.d/puppet files, vardir set to /var/lib/puppet in
/etc/puppet/common/puppet.conf, and yet, every time I run puppetca it
creates /etc/puppet/ssl. Anyone know why?
Doug.
--
You received this message because you are subscribed to the Google Groups "Puppet Users" group.
To post to this group, send email
2011 Feb 15
11
Puppetmasterd not receiving certificate request
Hi: I''m trying to configure Puppet on Ubuntu, and strangely I am never
able to generate a certificate because my server never shows any
pending certificate requests.
Put differently, on the server I am running puppetmasterd and on the
client I am able to connect to the server, but the client continues
printing
notice: Did not receive certificate
warning: peer certificate
2008 Jan 02
4
Puppetmaster doesn''t know itself
I restarted puppetmasterd and it announced that the Cert does not match
existing key !
[root@puppet ~]# puppetmasterd --verbose --no-daemonize
info: Starting server for Puppet version 0.24.1
info: mount[files]: allowing 10.100.0.0/16 access
info: mount[files]: allowing *.gridapp.com access
info: mount[files]: allowing *.dev.gridapp.com access
info: Retrieving existing certificate for
2007 Oct 10
5
Puppet ldapnodes issue
I am attempting to move our test puppet installation from looking for node information in a manifest to LDAP. I followed the instructions at: https://reductivelabs.com/trac/puppet/wiki/LdapNodes and was able to get the puppet schema loaded into our LDAP.
I can now query LDAP and modify/load data without any issues using the OpenLDAP tools.
e.g.
ldapsearch -h ldapdev1.domain.com -x
2007 Mar 19
3
certificate trouble
Hi Puppet-Team,
first thanks for this great configuration management tool !
My name is Matt and i am on creating a puppet plugin for openQRM.
The basic framework is already existing and working well so far.
Now, after having it working ok once i now ran into a problem that
my puppet-clients do not get their configuration any more from the
puppetmasterd. What i saw on the puppetmasterd logs is :
2007 Dec 24
5
could not find user puppet ?
err:
/Settings[top]/Settings[main]/File[/usr/local/.aqadmin/puppet/var/yaml]:
Failed to retrieve current state of resource: Could not find user puppet
debug: Finishing transaction 75413780 with 2 changes
since i put the last version on this test server i cannot launch puppet
manualy:
mkdir -m 700 -p /usr/local/.aqadmin/puppet/conf/ssl; \
mkdir -m 700 -p /usr/local/.aqadmin/puppet/var/facts; \
2007 Dec 22
8
puppet with postgresql adapter
Hi all,
i'' m trying to configure puppet to use rails with postgresql. I'' m having
troubles to make it work. Got no error when running puppetmasterd but
nothing is being populated in the DB. Is anybody using puppet with postgres
?
my config (in puppet.conf)
[rails]
dbadapter = postgresql
dbname = mydb
dbserver = localhost
dbuser = user
dbpassword = password
2007 Nov 02
5
Odd SSL Error
I have one puppet complaining -
Could not retrieve configuration: Certificates were not trusted: block
type is not 01
Puppetmaster and puppet''s are CentOS 4.5 and I use the Lutter rpms of
23.2, anyone ever see this?
Thx
Tim
2008 Feb 05
2
Restore from filebucket
Hi,
I''m using the ''backup'' parameter in file resources to
backup to a central filebucket on the puppetmaster.
How do I restore a backup? I couldn''t find anything
in the wiki, but saw some docs by running ''filebucket
--help''.
It says to restore a backed up file, you need to know
the md5sum. Unfortunately, AFAIK the only place this
2007 Sep 13
4
Eliminate pending signing requests
Hello,
How can I eliminate pending signing requests with puppetca?
2008 May 27
12
Puppetting the puppetmaster problems
Hi,
installing puppet at my first site was quite easy (not w/o problems,
but still). At the second site, I''ve run into something more serious.
First things first - I install puppetmaster on existing server, used
to keep LDAP db (my puppetmaster DOES NOT use LDAP, it just tries to
coexist on the same machine). The thing is, I need to puppet this
baby, so I''m running into a
2012 Dec 05
8
Error: Could not request certificate: Connection refused - connect(2)
Hi all,
I am new at puppet and Im using the puppet learning tutorial. I execute
until Basic agent/master puppet. Everything worked ok but after 2 or 3
days, running the command "puppet agent --test", start throw the error in
subject. That left me with the following questions:
how to puppet agent connect to master without service started on master?
If this connection is possible (
2008 Apr 25
4
Certificate retrieval failed: Connection reset by peer
Hi.
When registering a new client with the puppetmaster I get the
following error:
[root@host ~]# puppetd --server puppetmaster --waitforcert 50 --test
info: Creating a new certificate request for host
info: Creating a new SSL key at /var/lib/puppet/ssl/private_keys/
host.pem
warning: peer certificate won''t be verified in this SSL session
err: Could not call puppetca.getcert:
2006 Nov 02
6
certificate not trusted
Hello,
I try to install puppet on freebsd 6.X. All is well but i cannot get
the certificte to install and be recognized. I run .19.3.
I run the puppetd --test --waitforcert 60
then sign
and then i got:
err: No certificate; running with reduced functionality.
info: Creating a new SSL key at
/usr/local/.aqadmin/puppet/conf/ssl/private_keys/xxxxxxxxxxxxxx.pem
info: Creating a new certificate