G'day everyone. So far, have built out:
- *host001 *- PostgreSQL - *host002 *- memcached - *host003 *- Foreman UI with Katello - *host004 *- Puppet certificate authority - *host005 *- Puppet compile master Where: - *host003 *uses *host001 *for persistent storage, *host002 *for transient values (in the event we create more Foreman nodes) - *host004 *is connected to *host003 *using Smart Proxy - *host005 *is connected to *host003 *using Smart Proxy If we take a new host - *node001 *- and modify puppet.conf to read like * [main]* * ca_server = host004* * [agent]* * server = host005* And execute *puppet agent --test --verbose*, we can successfully begin a certificate signing request. After we sign the request on *host004*, we execute *puppet agent --test --verbose* from *node001* again, but encounter the following: *[root@node001 ~]# puppet agent --test --verbose* *Warning: Unable to fetch my node definition, but the agent run will continue:* *Warning: SSL_connect returned=1 errno=0 state=error: certificate verify failed: [self signed certificate in certificate chain for /CN=Puppet CA: host005]* *Info: Retrieving pluginfacts* *Error: /File[/opt/puppetlabs/puppet/facts.d]: Failed to generate additional resources using 'eval_generate': SSL_connect returned=1 errno=0 state=error: certificate verify failed: [self signed certificate in certificate chain for /CN=Puppet CA: host005]* *Error: /File[/opt/puppetlabs/puppet/facts.d]: Could not evaluate: Could not retrieve file metadata for puppet:///pluginfacts: SSL_connect returned=1 errno=0 state=error: certificate verify failed: [self signed certificate in certificate chain for /CN=Puppet CA: host005]* *Info: Retrieving plugin* *Error: /File[/opt/puppetlabs/puppet/lib]: Failed to generate additional resources using 'eval_generate': SSL_connect returned=1 errno=0 state=error: certificate verify failed: [self signed certificate in certificate chain for /CN=Puppet CA: host005]* *Error: /File[/opt/puppetlabs/puppet/lib]: Could not evaluate: Could not retrieve file metadata for puppet:///plugins: SSL_connect returned=1 errno=0 state=error: certificate verify failed: [self signed certificate in certificate chain for /CN=Puppet CA: host005]* *Error: Could not retrieve catalog from remote server: SSL_connect returned=1 errno=0 state=error: certificate verify failed: [self signed certificate in certificate chain for /CN=Puppet CA: host005]* *Warning: Not using cache on failed catalog* *Error: Could not retrieve catalog; skipping run* *Error: Could not send report: SSL_connect returned=1 errno=0 state=error: certificate verify failed: [self signed certificate in certificate chain for /CN=Puppet CA: host005]* *[root@node001 ~]#* Does anyone have an indication as to why this may be happening? -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/eef99ef8-214e-4ef4-bd7e-a252c01744e0%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
