Last active
September 13, 2016 23:47
-
-
Save todgru/21c944b08b87565ff0c1 to your computer and use it in GitHub Desktop.
failed to retrieve certificate and waitforcert is disabled, Warning: Unable to fetch my node definition. Puppet.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# for PE 2016.2 | |
# remove `certfile=` from /etc/puppetlabs/puppet/puppet.conf | |
# run sudo puppet agent -t (this should fail) | |
# Update the puppet.conf again with the correct `certfile=` name | |
# run sudo puppet agent -t |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Exiting; failed to retrieve certificate and waitforcert is disabled | |
# this was corrected by: | |
# First, follow directions from the output of the last command | |
#On the master: | |
# puppet cert clean <name>.ec2.node | |
#On the agent: | |
# rm -f /etc/puppetlabs/puppet/ssl/certs/<name>.ec2.node.pem | |
# puppet agent -t | |
sudo rm -rf /etc/puppetlabs/puppet/ssl/certificate_requests | |
sudo puppet agent -t |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Puppet - two nodes became unresponsive after a reboot of the puppet master. | |
# Running puppet agent -t failed with the following error: | |
# | |
# Warning: Unable to fetch my node definition, but the agent run will continue: | |
# Warning: SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert certificate revoked | |
# Info: Retrieving plugin | |
# Error: /File[/var/opt/lib/pe-puppet/lib]: Failed to generate additional resources using 'eval_generate': SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert certificate revoked | |
# Error: /File[/var/opt/lib/pe-puppet/lib]: Could not evaluate: Could not retrieve file metadata for puppet://puppetmaster.com/plugins: SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert certificate revoked | |
# Wrapped exception: | |
# SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert certificate revoked | |
# ...snip... | |
# | |
# I ran https://gist.github.com/todgru/1caf3333021c9b40c36e on puppet master. No luck. | |
# Removing and rebuilding certs on the node did the trick! | |
sudo mv /etc/puppetlabs/puppet/ssl /etc/puppetlabs/puppet/ssl.bak | |
sudo puppet agent -t |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment