Hi, on the agent, try
puppet agent --configprint server It likely indicates the FQDN of the old master. Change your puppet.conf accordingly, so that the new FQDN is used instead. [main] server=gso0puppet01... HTH, Felix On 03/04/2015 05:35 PM, Ed Deloye wrote: > I am building a new puppet master server and trying to get it to run > puppet on itself. > > I deleted everything in the /var/lib/puppet/ssl directory and generated > a new cert. > > I get this error: > err: Could not retrieve catalog from remote server: SSL_connect > returned=1 errno=0 state=SSLv3 read server certificate B: certificate > verify failed: [self signed certificate in certificate chain for > /CN=Puppet CA: puppetmaster.internal.ZZZ.com] > > The system name is gso0puppet01. Running puppet cert -la gives this output: > + "gso0puppet01.internal.ZZZ.com" > (F9:B1:00:23:FD:72:6C:F9:51:B9:CC:D8:BF:8B:25:9B) (alt names: > "DNS:gso0puppet01.internal.ZZZ.com", "DNS:puppet", > "DNS:puppet.internal.ZZZ.com") > > and openssl x509 -issuer -subject -noout -in > /var/lib/puppet/ssl/certs/ca.pem > issuer= /CN=Puppet CA: gso0puppet01.internal.ZZZ.com > subject= /CN=Puppet CA: gso0puppet01.internal.ZZZ.com > > So it looks like the agent is trying to contact the old master server, > puppetmaster. How can I make it use the new master server? > > Thanks, > Ed -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/54F9B652.2080809%40alumni.tu-berlin.de. For more options, visit https://groups.google.com/d/optout.
