Okay. I can signed now.. sudo puppetca -s server1 Did this on master, and then ran the test command on agent... will throw
sudo puppet agent --server puppetmaster --waitforcert 60 --test --verbose warning: peer certificate won't be verified in this SSL session info: Caching certificate for server1 err: Could not retrieve catalog from remote server: hostname was not match with the server certificate warning: Not using cache on failed catalog err: Could not retrieve catalog; skipping run On Wednesday, June 13, 2012 4:20:49 PM UTC-4, repoman wrote: > > I am deploying a new puppetmaster. I have old puppet nodes running. The > old master is completely gone. > > On puppet client, > > sudo puppet agent --server puppetmaster --waitforcert 60 --test --verbose > > But "name or service not known", so I edited /etc/hosts, added *ip_address > puppetmaster* to the hosts file. > I ran again, now SSL problem: > > err: Could not retrieve catalog from remote server: SSL_connect returned=1 >> errno=0 state=SSLv3 read server certificate B: certificate verify failed >> warning: Not using cache on failed catalog >> err: Could not retrieve catalog; skipping run >> > > I removed /var/lib/puppet/ssl and /etc/puppet/ssl/, and gave me this > http://pastebin.com/mc1dbXdH > Been 5 minutes, I cancelled it, realize it wouldn't go anywhere... > > Then I tried this on the master > >> sudo puppetca --sign server1 >> > > It said... > err: Could not call revoke: Could not find a serial number for server1 > > Did this.... > >> sudo puppetca --sign giab10 >> err: Could not call sign: Could not find certificate request for giab10 >> > > sudo puppetca --list --all > + my_puppet_master (finderprint value goes here....) > > > What should I do? Neither is contacting each other? > > Please help? Thanks > > > > > > > > -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To view this discussion on the web visit https://groups.google.com/d/msg/puppet-users/-/jeD1MrsiyG0J. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
