Dear Ygor, Thank you for the guidance. I didn't know we have to specify one... almost every single tutorial I visit didn't mention it :( bad... http://pratikamin.wordpress.com/2011/05/24/turning-a-blueprint-puppet-recipe-into-a-puppet-deployment/
Based on that tutorial, since I blueprint my server.... I ran puppetd --test on client and didn't get anything back. No one is waiting to be signed by the master. warning: peer certificate won't be verified in this SSL session Exiting; no certificate found and waitforcert is disabled Structure of my Master > fileserver.conf > manifests ===> site.pp > modules ===> giab061112 > ===> files ==> tmp > > > ==> xxxxxxxxxxx.tar > manifests > ==> init.pp > templates > ==> etc files > ssl > site.pp has the following ('giab10' is the host name of the client) node giab061112 { include giab061112 } node 'giab10' inherits giab061112 { } The fileserver.conf is setup like this (the ip for client is 10.10.0.56....) [giab061112] path /etc/puppet/modules/giab061112/files allow 10.10.0.0/56 Any idea? Thanks! On Thursday, June 14, 2012 6:26:05 PM UTC-4, Ygor wrote: > > Without a default node definition as an absolute minimum, > what is the Puppet Master supposed to do when queried by the Puppet > Client/Agent ? > > I believe it will do exactly what your servers are doing: bupkis ! > > http://en.wiktionary.org/wiki/bupkis > > “Sometimes I think the surest sign that intelligent life exists elsewhere > in the universe is that none of it has tried to contact us.” > Bill Waterson (Calvin & Hobbes) > > ----- tas <gokoproj...@gmail.com> wrote: > > Dear Ygor, > > > > I am afraid I don't have any node definition. I search through... none. > > > > We basically first blueprint our blueprint machine, generate puppet > files, > > and then move them to the puppetmaster's /etc/puppet/modules > > Then there is an init.pp file. > > > > root@ghive-ldap:/etc/puppet# ls -r > > ssl modules manifests > > > > root@ghive-ldap:/etc/puppet/manifests# ls (gives none...) > > > > root@ghive-ldap:/etc/puppet/modules# ls > > files manifests templates > > > > root@ghive-ldap:/etc/puppet/modules/manifests# ls > > init.pp > > > > I don't have site.pp... according to the previous tech's manual > (giab012412 > > is the blueprint name, used to generate puppets) > > Then, in /etc/puppet/manifests/site.pp modify the line that reads > > "include giab.." to say "include giab012412". This will tell the > > puppetmaster > > to apply the new giab blueprint to all giabs that connect to it. > > > > > > Thanks... > > Sorry for making things so confusing... > > > > John > > On Thursday, June 14, 2012 5:53:53 PM UTC-4, Ygor wrote: > > > > > > Silly Question Number One: > > > > > > What node definitions do you have in your manifest ? > > > > > > Classically, you have *.pp files in /etc/puppet/manifest/nodes that > are > > > referenced from /etc/puppet/manifest/site.pp > > > > > > As an example, this line is in my site.pp file: > > > > > > import "nodes/*-nodes.pp" > > > > > > > > > “Sometimes I think the surest sign that intelligent life exists > elsewhere > > > in the universe is that none of it has tried to contact us.” > > > Bill Waterson (Calvin & Hobbes) > > > > > > ----- tas <gokoproj...@gmail.com> wrote: > > > > I am making a huge mess, so I'd rather to start over and configure > them. > > > > > > > > This is a total newbie trying to setup something for his lab.... I > think > > > > this would also help many people out there.. > > > > * > > > > Part I. * > > > > I reinstalled puppetmaster and puppet on the master and client > machine. > > > > > > > > Here is the /etc/hosts for the master > > > > 127.0.0.1 localhost > > > > 127.0.1.1 ghive-ldap > > > > 10.10.0.57 ghive-ldap.abc.edu ghive-ldap > > > > #10.10.0.57 ghive-ldap.abc.edu puppet > > > > 10.10.0.56 giab10 > > > > > > > > You see the line I commented out? In many tutorials, they say put > the > > > > default puuet after there. I am not sure if I am supposed to do that > > > > (repeating a line like that...)? Everything else is default (our sys > > > admin > > > > sets up that way...) > > > > > > > > Here is the /etc/hosts on the client > > > > 127.0.0.1 localhost > > > > 127.0.1.1 giab10 > > > > > > > > # The following lines are desirable for IPv6 capable hosts > > > > ::1 localhost ip6-localhost ip6-loopback > > > > fe00::0 ip6-localnet > > > > ff00::0 ip6-mcastprefix > > > > ff02::1 ip6-allnodes > > > > ff02::2 ip6-allrouters > > > > 130.55.57.51 ghive-ldap > > > > > > > > I can ping puppet, ghive-ldap, giab10..... > > > > > > > > So for this step one... how am I supposed to tweak things??? > Uncomment > > > what > > > > I have? > > > > > > > > ---------------- > > > > *Part II. > > > > * > > > > I started puppetmaster on the master machine like this > > > > > > > > Then on client: > > > > sudo puppet agent --server ghive-ldap --waitforcert 60 --test > --verbose > > > > warning: peer certificate won't be verified in this SSL session > > > > warning: peer certificate won't be verified in this SSL session > > > > warning: peer certificate won't be verified in this SSL session > > > > > > > > It hangs there, so back to master and check the cert list > > > > sudo puppet cert --list > > > > > > > > I got none! > > > > > > > > By the way, I have to add double dash in front of list, because of > this: > > > > sudo puppet cert list > > > > Invalid method to apply > > > > > > > > So what should I do? I am not sure where the Doc covers this... > > > > Should I issue sudo puppetca --sign giab10 on the master??? > > > > > > > > Please guide me through this. Thanks! > > > > > > > > > > > > -- > > > > You received this message because you are subscribed to the Google > > > Groups "Puppet Users" group. > > > > To view this discussion on the web visit > > > https://groups.google.com/d/msg/puppet-users/-/jWD3_YwGhcsJ. > > > > To post to this group, send email to puppet-users@googlegroups.com. > > > > To unsubscribe from this group, send email to > > > puppet-users+unsubscr...@googlegroups.com. > > > > For more options, visit this group at > > > http://groups.google.com/group/puppet-users?hl=en. > > > > > > > > > > > > > > -- > > You received this message because you are subscribed to the Google > Groups "Puppet Users" group. > > To view this discussion on the web visit > https://groups.google.com/d/msg/puppet-users/-/aeE-5g1vAWkJ. > > To post to this group, send email to puppet-users@googlegroups.com. > > To unsubscribe from this group, send email to > puppet-users+unsubscr...@googlegroups.com. > > For more options, visit this group at > http://groups.google.com/group/puppet-users?hl=en. > > > > -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To view this discussion on the web visit https://groups.google.com/d/msg/puppet-users/-/qNnqu5DR8_wJ. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.