todgru/puppet-wait-for-cert.sh

## gistfile1.txt
# for PE 2016.2
# remove `certfile=` from /etc/puppetlabs/puppet/puppet.conf
# run sudo puppet agent -t (this should fail)
# Update the puppet.conf again with the correct `certfile=` name
# run sudo puppet agent -t

## puppet-wait-for-cert.sh
# Exiting; failed to retrieve certificate and waitforcert is disabled
# this was corrected by:
# First, follow directions from the output of the last command
#On the master:
#  puppet cert clean <name>.ec2.node
#On the agent:
#  rm -f /etc/puppetlabs/puppet/ssl/certs/<name>.ec2.node.pem
#  puppet agent -t
sudo rm -rf /etc/puppetlabs/puppet/ssl/certificate_requests
sudo puppet agent -t

## puppet.sh
# Puppet - two nodes became unresponsive after a reboot of the puppet master.
# Running puppet agent -t failed with the following error:
#
# Warning: Unable to fetch my node definition, but the agent run will continue:
# Warning: SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert certificate revoked
# Info: Retrieving plugin
# Error: /File[/var/opt/lib/pe-puppet/lib]: Failed to generate additional resources using 'eval_generate': SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert certificate revoked
# Error: /File[/var/opt/lib/pe-puppet/lib]: Could not evaluate: Could not retrieve file metadata for puppet://puppetmaster.com/plugins: SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert certificate revoked
# Wrapped exception:
# SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert certificate revoked
# ...snip...
#
# I ran https://gist.github.com/todgru/1caf3333021c9b40c36e on puppet master. No luck.
# Removing and rebuilding certs on the node did the trick!
sudo mv /etc/puppetlabs/puppet/ssl /etc/puppetlabs/puppet/ssl.bak
sudo puppet agent -t
	# for PE 2016.2
	# remove `certfile=` from /etc/puppetlabs/puppet/puppet.conf
	# run sudo puppet agent -t (this should fail)
	# Update the puppet.conf again with the correct `certfile=` name
	# run sudo puppet agent -t
	# Exiting; failed to retrieve certificate and waitforcert is disabled
	# this was corrected by:
	# First, follow directions from the output of the last command
	#On the master:
	# puppet cert clean <name>.ec2.node
	#On the agent:
	# rm -f /etc/puppetlabs/puppet/ssl/certs/<name>.ec2.node.pem
	# puppet agent -t
	sudo rm -rf /etc/puppetlabs/puppet/ssl/certificate_requests
	sudo puppet agent -t
	# Puppet - two nodes became unresponsive after a reboot of the puppet master.
	# Running puppet agent -t failed with the following error:
	#
	# Warning: Unable to fetch my node definition, but the agent run will continue:
	# Warning: SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert certificate revoked
	# Info: Retrieving plugin
	# Error: /File[/var/opt/lib/pe-puppet/lib]: Failed to generate additional resources using 'eval_generate': SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert certificate revoked
	# Error: /File[/var/opt/lib/pe-puppet/lib]: Could not evaluate: Could not retrieve file metadata for puppet://puppetmaster.com/plugins: SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert certificate revoked
	# Wrapped exception:
	# SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert certificate revoked
	# ...snip...
	#
	# I ran https://gist.github.com/todgru/1caf3333021c9b40c36e on puppet master. No luck.
	# Removing and rebuilding certs on the node did the trick!
	sudo mv /etc/puppetlabs/puppet/ssl /etc/puppetlabs/puppet/ssl.bak
	sudo puppet agent -t