On Feb 9, 2011, at 7:27 AM, CraftyTech wrote: > Thanks for your reply. At this juncture, I'm doing it by the book and it's > still failing for me. Can someone spot what I'm doing wrong here?: > > puppetmasterd --no-daemonize --verbose --certname puppet-test01.dev.domain.com > "Could not prepare for execution: Retrieved certificate does not match > private key; please remove certificate from server and regenerate it with the > current key" > > > Generated from Main Puppetmaster with: > sudo /usr/sbin/puppetca --generate --certdnsnames > puppet:puppet.glb.domain.com puppet-test01.dev.domain.com > > > The Files are there: > puppet-test01 puppet # ls -ltr /etc/puppet/ssl/private_keys/ > total 4 > -rw------- 1 puppet root 887 Feb 9 10:08 puppet-test01.dev.domain.com.pem > puppet-test01 puppet # ls -ltr /etc/puppet/ssl/certs > total 8 > -rw-r--r-- 1 puppet root 960 Feb 9 10:09 puppet-test01.dev.domain.com.pem > -rw-r--r-- 1 puppet root 765 Feb 9 10:11 ca.pem
With your current config file, "there" should be /var/lib/puppet/ssl, not /etc/puppet/ssl. Check by running this on puppet-test1: puppetmasterd --genconfig | grep 'ssldir =' It will probably return "ssldir = /var/lib/puppet/ssl" telling you the ssl directory is in "/var/lib/puppet/ssl". -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.