Displaying 20 results from an estimated 3000 matches similar to: "Even the "Simplest Puppet Install Recipe" apparently isn't simple enough"
2008 Jan 02
4
Puppetmaster doesn''t know itself
I restarted puppetmasterd and it announced that the Cert does not match
existing key !
[root@puppet ~]# puppetmasterd --verbose --no-daemonize
info: Starting server for Puppet version 0.24.1
info: mount[files]: allowing 10.100.0.0/16 access
info: mount[files]: allowing *.gridapp.com access
info: mount[files]: allowing *.dev.gridapp.com access
info: Retrieving existing certificate for
2010 Jun 15
8
puppetca unable to sign new certs - Invalid argument error
Hello
I have a puppetmasterd installation running on a Mac OS X 10.6.3
Server with puppet installed via macports.
Earlier today it was happily signing requests, before I upgraded
puppet from 0.24.8 to 0.25.4. Now I get "Invalid argument":
bash-3.2# puppetca --sign bouti.carbonplanet.com
bouti.carbonplanet.com
err: Could not call sign: Invalid argument
The only mention I can find on
2006 Oct 18
19
Creating client certificates
I testing Puppet 0.19.3. If we decide to use it, we''d deploy it
across several thousand hosts. The method described for creating
client certificates described in the documentation - running
"puppetd --server <server> --waitforcert 60 --test" and "puppetca
--sign <client>" - is not practical for our installation. I''ve
tried creating
2006 Nov 02
6
certificate not trusted
Hello,
I try to install puppet on freebsd 6.X. All is well but i cannot get
the certificte to install and be recognized. I run .19.3.
I run the puppetd --test --waitforcert 60
then sign
and then i got:
err: No certificate; running with reduced functionality.
info: Creating a new SSL key at
/usr/local/.aqadmin/puppet/conf/ssl/private_keys/xxxxxxxxxxxxxx.pem
info: Creating a new certificate
2011 Mar 15
1
error SSL_connect SYSCALL returned=5 errno=0 state=SSLv2/v3 read server hello A
Hello folks,
I am getting this error on one of the clients, here''s all of the
output. It was working on this client and today it stopped working. I
cleaned the cert for this client puppetmaster by "puppetca --clean
host.domain.com" and I removed the "/var/lib/puppet/ssl" directory so
it would get new certs. But I still keep getting the same error as
below. I have other
2007 Nov 30
2
Puppetca issue - not working
I am using Puppet 0.23.2
I am trying to add a new client -- v26.domain.com
This is what I am doing from client side - v26.doamin.com
#puppetd --test
info: Creating a new certificate request for v26.domain.com
info: Creating a new SSL key at
/var/lib/puppet/ssl/private_keys/v26.domain.com.pem
warning: peer certificate won''t be verified in this SSL session.
notice: No
2011 Jul 08
2
Puppetmaster setup with separate CA server configuration help
Hi All,
I am setting up puppetmaster with nginx and passenger and separating
the Puppetmaster primary CA server. I have 3 host
loadbalancer01 - Nginx doing LB on IP address and also running
puppetmaster with passenger under 127.0.0.1 (port 8140).
primaryca - Puppetmaster Primary CA
pclient - Puppet Client
The did the following steps:
On Primary CA server:
----------------------------
cd
2009 Feb 12
2
"Could not find server puppet" - installation/configuration error
Started the discussion in puppet users mailing list based on
recommendation from luke. This discussion is to a follow up regarding
bug#1955 "Could not find server puppet" - installation/configuration
error".
jamtur01''s last recommendation:
Rather than renaming things try the certname option (see
http://reductivelabs.com/trac/puppet/wiki/ConfigurationReference).
But
2010 Dec 22
3
Using Puppet's client certificates for Apache, SSLVerifyClient
Hi -
I read up on this subject quite a bit, and was able to find a few
posts on the mailing list, even found a wiki article. Unfortunately
it doesn''t quite address what I''m looking to do.
From what I understand, Puppet''s client/server authentication system -
using SSL - is portable. I believe that I should be able to use the
same SSL certificates and keys (and even
2008 May 27
12
Puppetting the puppetmaster problems
Hi,
installing puppet at my first site was quite easy (not w/o problems,
but still). At the second site, I''ve run into something more serious.
First things first - I install puppetmaster on existing server, used
to keep LDAP db (my puppetmaster DOES NOT use LDAP, it just tries to
coexist on the same machine). The thing is, I need to puppet this
baby, so I''m running into a
2010 Nov 13
12
certificate verify failed
I am banging my head against the wall for recently built hosts that
are unable to verify the server''s certs. The usual is not working.
on the puppet agent machine:
find /var/lib/puppet/ssl -type f -delete
on puppet master:
puppetca --clean <new_host_cert>
on agent:
puppetd --server puppet --waitforcert 2 --no-daemonize -d -o
on puppet master:
puppetca --sign
2008 Apr 25
4
Certificate retrieval failed: Connection reset by peer
Hi.
When registering a new client with the puppetmaster I get the
following error:
[root@host ~]# puppetd --server puppetmaster --waitforcert 50 --test
info: Creating a new certificate request for host
info: Creating a new SSL key at /var/lib/puppet/ssl/private_keys/
host.pem
warning: peer certificate won''t be verified in this SSL session
err: Could not call puppetca.getcert:
2008 Nov 10
12
CA_Server woes
I''m having difficulty getting my head around some CA issues
My client has:
[puppetd]
ca_server=puppetca.mydomain.com
and puppet resolves to a different machine.
when puppet connects, it requests a signature from
puppetca.mydomain.combut then on the next pass fails with the
following:
err: Could not retrieve catalog: Certificates were not trusted: SSL_connect
returned=1 errno=0
2010 Oct 15
5
alternate hostnames, keys, and certs
I''d like to extend my use of puppet to manage my desktop/notebook macs.
As others have noted, the hostname of the mobile machines tends to change frequently, so basing the node name (in my site.pp) and the corresponding cert and private key names seems to be an issue.
I seem to recall somewhat talking about this at Puppet Camp last week…..
Generally my signing strategy is always to
2011 Nov 02
5
Puppet certificate
I''m running in circles with this issue... I accidentally did a ''puppetca --clean --all'' and lost all certificates. I was able to get the puppetmaster running and re-created certificates for the client system, but I get the following error:
warning: peer certificate won''t be verified in this SSL session
info: Caching certificate for w0f.lagged.com
info:
2010 Jan 27
4
err: Could not call list: header too long
Getting this error:
err: Could not call list: header too long
when running puppetca commands on master.
There is not a disk space issue.
On the puppet master server, /var filled up to 100% during the night.
Now it''s fine, down to 25% used.
I rebooted server too
Any fixes?
--
You received this message because you are subscribed to the Google Groups "Puppet Users" group.
To
2010 Feb 18
14
Rebuilding machines from foreman
Hello,
I ran into this problem today, I am trying to implement "One click
installation", I followed foreman howtos and set up the pre-requisites
accordingly.
However, when I click on "Build" button, I get the following errors in the
foreman''s console and another error in the web interface indicating that the
installation failed. Any ideas?
*"PuppetCA: SSL/CA or
2011 Apr 18
4
Certificate request does not match existing certificate
Hello there,
I have a problem while I''m trying to puppetize a client, I get this
error:
err: Could not request certificate: Certificate retrieval failed:
Certificate request does not match existing certificate; run ''puppetca
--clean puppetclienttest.sl.ss''.
I checked
-Shutdown puppet on client/server side, delete ssl/ dir to regenerate
certificate.
-Be sure that the
2007 Jul 03
7
CA migration
Anyone ever migrated the puppetca to a different host? What are the steps
that are involved?
2011 Mar 24
3
err: Could not retrieve catalog from remote server: certificate verify failed
So set up new node, ran on the client
puppetd --server puppetmaster --waitforcert 60 --test
on the puppetmaster itself I ran
puppetca --list
saw the hostname
and then ran:
puppetca --sign hostname.domain.com
and on the puppet node itself I went back and ran puppetd -tv
and get the following error:
err: Could not retrieve catalog from remote server: certificate verify failed
warning: Not