On Monday, October 16, 2017 at 10:08:20 AM UTC-5, Lucas Z. wrote: > > Hello everyone, > > I made a mistake in my Puppet Server, I ended up installing a new puppet > with the command apt install puppet and apt autoremove. Now, the original > Puppet Server apparently disappeared from /opt/puppetlabs. > > If i made a new fresh install of the Puppet Server, my agents will > be unauthorized? Is there any simpler way to bring the puppet server back? > > Ubuntu version: 16.04 > Puppet Server version: 5.0 > >
I suppose you have no backup from which to recover. In that case, it is important to understand that membership and participation in your Puppet site hinges on recognition of a common certificate authority. By default, Puppet uses its own CA and a self-signed CA certificate; such a certificate cannot be regenerated if it is lost. If your CA certificate was indeed lost (or even if just the private key was lost), and it cannot be recovered from backup, then at best your site is crippled. You will be unable to authorize any new agents. If you also lost the master's certificate then you are completely toast -- there is no way to authorize or re-authorize a master that the existing agents will accept without reconfiguration. In this case, your only viable course of action is to re-authorize all your agents against the new master and its new CA. If, on the other hand, you still have at least the CA certificate then you can probably recover. I cannot provide details, but I don't doubt that there are those around here who can. John -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/14246b64-5649-42fa-b808-8613e1284285%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
