[vagrant-up] vagrant provisioning using puppet_server

Sat, 01 Nov 2014 10:37:26 -0700 

Hi mates,

I am trying to configure vagrant using puppet_server with exisiting 
certificates so an upcoming box does not need to get it's certificate 
signed over and over again.

So I spun the box up, ran puppet agent test, signed the request and run 
that again.
Copied cert to my local machine and tried to configure my Vagrantfile.

I have a folder provision/ssl containing the two keys, named
FQDN.pem and FQDN.pem.pub

My provisioner looks like this:

   config.vm.provision "puppet_server" do |puppet|
     puppet.options                 = "--verbose --debug"
     puppet.puppet_node                = "<FQDN>"
     puppet.puppet_server             = "<puppet-master>"
     puppet.client_cert_path        = "./provision/ssl/FQDN.pem.pub"
     puppet.client_private_key_path    = "./provision/ssl/FQDN.pem"
   end

when I run vagrant up I get loads of errors...


Debug: Creating new connection for https://<puppet-master>:8140
Debug: Using cached certificate for ca
Debug: Creating new connection for https://<puppet-master>:8140
Debug: Using cached certificate for ca
..
Debug: Creating new connection for https://<puppet-master>:8140
Debug: Using cached certificate for ca
Exiting; failed to retrieve certificate and waitforcert is disabled


Stderr from the command:

stdin: is not a tty
Warning: Setting templatedir is deprecated. See 
http://links.puppetlabs.com/env-settings-deprecations
   (at /usr/lib/ruby/vendor_ruby/puppet/settings.rb:1134:in 
`issue_deprecation_warning')
Error: Cached certificate for orderxml.fig.netwz failed: nested asn1 error
Error: Cached certificate for orderxml.fig.netwz failed: nested asn1 error
Error: Cached certificate for orderxml.fig.netwz failed: nested asn1 error
...
Error: Cached certificate for orderxml.fig.netwz failed: nested asn1 error
Error: Cached certificate for orderxml.fig.netwz failed: nested asn1 error
Error: Could not request certificate: stack level too deep


Setting the two cert params to 
    puppet.client_cert_path        = "provision/ssl/FQDN.pem.pub"
     puppet.client_private_key_path    = "provision/ssl/FQDN.pem"

as I would have expected, gives a Ruby file not found exception for the 
pub-key.

What am I missing here?


Any help appreciated!

Regards
Jochen


-- 
You received this message because you are subscribed to the Google Groups 
"Vagrant" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
For more options, visit https://groups.google.com/d/optout.

Reply via email to