On Tue, Mar 29, 2011 at 5:11 PM, Hugo Cisneiros (Eitch) < [email protected]> wrote:
> Hi, > > I did a Puppetmaster installation using Nginx + Puppet and almost > everything is working. Almost :( > > When a new client is going to connect to the puppet server, it generates > its certificate and do a request on the web server (PUT). But it appears > that the certificate is being stored on the wrong directory. > > In WEBrick, the certificate requests are stored on > /var/lib/puppet/ssl/ca/requests, which "puppetca -l" lists nicely and I can > sign it. But with Passenger, the certificate is being stored on > /var/lib/puppet/ssl/certificate_requests, which I know is used to store the > local host certificate request, not the remote ones. > > I did manage to get around this specifying the option > requestdir=/var/lib/puppet/ssl/ca/requests (defaults > to /var/lib/puppet/ssl/certificate_requests) on config.ru or > /etc/puppet/puppet.conf but I think this is a strange behavior. Also, with > this problem, auto-sign don't work (not critical for me). > Actually I was wrong... This "workaround" didn't work as expected. Even signing with puppetca -s, the signed certificate goes to the right place but the client doesn't know that it is signed and never begin its operation... Nginx log shows three 404's on /production/certificate/machine on each client run. Any ideas? -- []'s Hugo www.devin.com.br -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
