similar to: puppetrun and certs - CA certdnsnames?

I''m trying to get puppetrun to work, without luck so far. I have my puppetmaster and clients working fine with the clients polling the master. Now I want to be able to force an update. Using version 0.23.2 On the client I set listen=true and created the namespaceauth.conf file. Restarted puppetd and it appears fine. On the master I run puppetrun as root and get root@plane:/etc/puppet#

Hi, I have a Gentoo server running puppetmasterd from Puppet 0.24.1 and a Ubuntu server running puppetd from Puppet 0.23.2. I have added listen=true to the [puppetd] section on the client and run puppetd --debug. I then run puppetrun --debug --host hostname on the puppetmaster server. This is the output I get: Puppetmaster: # puppetrun --debug --host hostname Failed to load ruby LDAP library.

Hi, I''m having trouble getting puppetrun to work, it returns: # puppetrun --debug --host serverb debug: Puppet::Network::Client::Runner: defining puppetrunner.run Triggering serverb debug: Calling puppetrunner.run warning: peer certificate won''t be verified in this SSL session err: Could not call puppetrunner.run: #<RuntimeError: HTTP-Error: 500 Internal Server Error >

when I connect puppetrun to the puppetd d instance, I get the above warning. my namespaceauth.conf file is as follows: [puppetrunner] allow HOST I can fix the issue by adding the entry twice ( I tried this b/c I am not sure familiar with ruby, and I thought it might be a bug based on the return value of split.) [puppetrunner] allow HOST,HOST

I''m using puppet 0.24.7-4. I have a situation where I have some very long running puppet runs in order to do upgrades (removing applications from load balancers gracefully, et cetera). My puppet runs triggered via puppetrun are finishing successfully: Jun 8 20:31:29 puppetd[10178]: Finished catalog run in 345.18 seconds Puppetrun itself is timing out: err: Connection timeout calling

Unfortunately I haven''t been able to find anything in the docs... I just built a new puppetmaster to replace my testing install on an old box. The hostname is different, and obviously the master certificates are different. What needs to be done to the clients to get them to play nice with the new box? Thanks, Jason Antman --~--~---------~--~----~------------~-------~--~----~ You

Hello all, I''ve tried to run ''puppetrun'', but there seems something unconfigured regarding the certificates. The reverse way (puppetd pulls the config from puppetmasterd) works fine. The namespaceauth.conf on the client (where puppetd runs) is configured as follows: [puppetrunner] allow *.abc.net (also tried the calling host: puppet1.abc.net) But when I call

Can''t seem to make it work puppet 2.6.8 (client/server) # puppet kick -f ubuntu4.ttinet Triggering ubuntu4.ttinet Host ubuntu4.ttinet failed: Error 400 on SERVER: ''save '' is not an allowed value for method directive ubuntu4.ttinet finished with exit code 2 Failed: ubuntu4.ttinet root@ubuntu4:~# cat /etc/puppet/auth.conf path /run method save allow *

Hi All Apologies if this is obvious, but I''m a bit flaky around SSL certificates. NB puppet version 0.25.5 We use the brilliant feature of certificates where you can have Alternate DNS names for a certificate which is manifested in the puppet master config file as certdnsnames. All our clients connect to puppet-$ location.example.com, and if $location is down, we can point the CNAME to

Hello, I'm quite new to NUT, currently setting it up on a few machines in my home lab because I switched from an APC UPS to a CyberPower unit. This is running in a home lab, and I'm trying to implement some apparently unusual logic around load-shedding. I'm strongly considering writing my own custom script to replace upsmon in order to achieve the desired result. I see a lot of

On Sat, Nov 7, 2020 at 1:27 PM Charles Lepple <clepple at gmail.com> wrote: > On Nov 7, 2020, at 11:18 AM, Jason Antman <jason at jasonantman.com> wrote: > > > Hello, > > I'm quite new to NUT, currently setting it up on a few machines in my home > lab because I switched from an APC UPS to a CyberPower unit. This is > running in a home lab, and I'm

What is required to allow running puppetrun as a normal user? The documentation implies that puppetrun has to be run as root to get access to the SSL certificates. What permissions need to be set to allow normal users (or a group of users) to perform puppetrun? Is it possible to create a more-public certificate that can only be used for puppetrun? We could use the ability to have developers

Hi When using puppetrun to trigger machines to get and apply their configuration, it will only trigger the machine when executing puppetrun for the second time: puppetmaster # puppetrun --host puppetclient puppetclient log: -- snip Apr 13 08:19:49 puppetd[20208]: puppetmaster(172.16.34.12) triggered run Apr 13 08:20:08 puppetd[20208]: puppetmaster(172.16.34.12) triggered run Apr 13 08:20:08

YASP... Yet Another SSL Problem, this time on puppetrun. $ sudo puppetrun -p 10 --host anotherhost -t aze Failed to load ruby LDAP library. LDAP functionality will not be available Triggering anotherhost Host anotherhost failed: Certificates were not trusted: tlsv1 alert unknown ca anotherhost finished with exit code 2 Failed: anotherhost Running with "strace -f" shows that

Hi While running puppetrun on my master server, i receive the following error on the client host for which puppetrun has been run: err: Could not retrieve catalog: Could not find terminus plain for indirection node Please help what needs to be done for the same. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups

I''ve tried this on two different setups all running 0.22.1. One group is Ubuntu/OpenBSD the other is RHEL4/RHEL4. Master has signed client certs. puppetd works fine from client. If I run from the server side: root@server:~# puppetrun --host client_host.example.com Failed to load ruby LDAP library. LDAP functionality will not be available Triggering client_host.example.com Host

Hello, Now that I can run my client with the --silent and --no-client option, Id like to centralize the logs on my puppet server and not on my puppet clients. The problem is that so far I havent found an option to tell puppetrun to get the logs back on my server. Is that possible to do such a thing with puppetrun? (running on v.0.18.4) Thanks in advance. -- Jean-Christophe Lacaze Ministry

Hi All, I was surprised to notice that a call to noop from puppetrun did not work as expected. on the agent side (for this case the server side..), I ran: puppetd --verbose --no-daemonize (where listen is set in the puppet.conf) on the puppet server side(in this case the client side), I ran: puppetrun --noop --host SERVER notice: SERVER(IP) triggered run info: Caching catalog at

Envoy? ? partir de mon Windows Phone -----Message d'origine----- De : "Jason Antman" <jason at jasonantman.com> Envoy? : ?17/?04/?2015 06:23 ??: "Discussion about the virtualization on CentOS" <centos-virt at centos.org> Objet : Re: [CentOS-virt] CentOS 7 AMI Building Ok, thanks so much! That'll do fine. The only other bits mentioned on

Envoy? ? partir de mon Windows Phone ________________________________ De : Jason Antman<mailto:jason at jasonantman.com> Envoy? : ?17/?04/?2015 06:23 ? : Discussion about the virtualization on CentOS<mailto:centos-virt at centos.org> Objet : Re: [CentOS-virt] CentOS 7 AMI Building Ok, thanks so much! That'll do fine. The only other bits mentioned on