Home
»
Articles
»
Certificate verify failed on a puppet client

Certificate verify failed on a puppet client

Posted by Leon Bogaert on May 12, 2013 in Other

Warning: Unable to fetch my node definition, but the agent run will continue:
Warning: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed: [unable to get certificate CRL for /CN=puppetmaster]
 

I’ve only seen this error if the system time is not the same between the master and agent. To resolve this, install ntp on the master and agent and make sure the times are synced. You’ll need to remove the cert on the master if it’s been accepted.

1	puppet cert clean ‘agent-name’

Now you’ll have to clean up the certs on the agent.

1	find /var/lib/puppet -type f -print0 \|xargs -0r rm

You should be good to go and try again.

Comments

Search this blog

Github Repos

blog.vanutsteen.nl
Code for my blog at http://blog.vanutsteen.nl
dotfiles
My personal dotfiles
callbacks
This package makes it simple to add callbacks to ruby classes
acts_as_overridable
A rails plugin that lets you set the attribute value of an object without losing the original value.
enfuse_raw
enfuse_raw
diodon-imgur
Diodon imgur (image upload) plugin
custom-err-message
Custom error messages for Rails