Skip to content

Instantly share code, notes, and snippets.

@tkishel

tkishel/cert_error.md

Created July 18, 2019 22:11
Show Gist options
  • Save tkishel/6a9f3a831b2b763628f42e1d2d75deda to your computer and use it in GitHub Desktop.
Save tkishel/6a9f3a831b2b763628f42e1d2d75deda to your computer and use it in GitHub Desktop.
Download ZIP
Raw
cert_error.md

Decision Tree: Certificate Error

  • Verify the server setting in puppet.conf on the Agent is set to the Master (or the Load Balancer of the Master).

  • Note the datetime stamp of the files in puppet/ssl on the Agent

  • Review the Application and System logs.

    • Look for the start time of the last run, and for errors before and during that run for a root cause.

  • Execute puppet agent -t as root on Linux or an Administrator on Windows.

    • No Certificate?
      • Execute puppet cert list or puppetserver ca list on the Master
        • Certificate request listed?
          • Verify and sign the certificate.
          • Verify puppet agent after signing the certificate.
        • Certificate request not listed?
          • Execute puppet cert list --all or puppetserver ca list --all on the Master
            • Compare the certificate on the Master with the certificate on the Agent
            • Compare the ca certificate of the Master with the ca certificate on the Agent
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment