Hello Felix > What does puppetca --list --all give you?
It gives me; ---------------------------------------------- puppet@puppet-server:~> puppetca --list --all puppet@puppet-server:~> puppetca --list No certificates to sign puppet@puppet-server:~> ---------------------------------------------- > Have you ever told puppet to sign any cert for that box? Yes,by running; "/sbin/puppetd --server puppet-server.lmera.ericsson.se --verbose -- test" >Is autosign enabled per chance? Hmmm, it appears so; puppet@puppet-server:~> more /etc/puppet/autosign.conf *.lmera.ericsson.se puppet@puppet-server:~> I believe this is mistake. I will definitly remove that and see what happens. >The first wooden hammer you can swing is "move the cert away from the master's ssl dir". I'll try that but I'll first see the outcome of getting rid of the autosign. I believe that autosign has been put in place by mistake caused by the fact that there is no working default configuration. Thanks Rgds, Mat > The first wooden hammer you can swing is "move the cert away from the > master's ssl dir". > > Another approach (albeit crooked) would be to try and find the privkey > for the cert that somehow made it to your master and use that for the > client. I don't think you'll find it, though. > > Have you ever told puppet to sign any cert for that box? Is autosign > enabled per chance? > > HTH, > Felix -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
