I believe that means the cert on the master and the client weren't signed by
the same CA.
On Sun, Feb 8, 2009 at 10:29 PM, chakkerz <chakk...@gmail.com> wrote:
>
> Hello there
>
> I'm having some issues and i'm not entirely sure where they are
> starting (I'm not generally a Solaris user). I gather that there are
> some discussions about the error messages, but if someone could tell
> me what rock to look under first i'd appreaciate it :)
>
> My solaris puppet (puppetsun) is supposed to talk to my puppet beta
> master (running rhel). I've done the puppetca --sign puppetsun... and
> now when i run `puppet -vtd` i get:
> debug: Creating default schedules
> debug: Failed to load library 'ldap' for feature 'ldap'
> debug: Failed to load library 'shadow' for feature 'libshadow'
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[main]/File
> [/var/lib/puppet/lib]: Autorequiring File[/var/lib/puppet]
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[ssl]/File[/
> var/lib/puppet/ssl/private]: Autorequiring File[/var/lib/puppet/ssl]
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[ssl]/File[/
> var/lib/puppet/ssl/certs]: Autorequiring File[/var/lib/puppet/ssl]
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[ssl]/File[/
> var/lib/puppet/ssl/certs/puppetsun.example.org.pem]: Autorequiring File
> [/var/lib/puppet/ssl/certs]
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[main]/File
> [/var/lib/puppet/ssl]: Autorequiring File[/var/lib/puppet]
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[ssl]/File[/
> var/lib/puppet/ssl/public_keys/puppetsun.example.org.pem]:
> Autorequiring File[/var/lib/puppet/ssl/public_keys]
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[ssl]/File[/
> var/lib/puppet/ssl/public_keys]: Autorequiring File[/var/lib/puppet/
> ssl]
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[puppetd]/
> File[/etc/opt/csw/puppet/puppet.conf]: Autorequiring File[/etc/opt/csw/
> puppet]
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[ssl]/File[/
> var/lib/puppet/ssl/private_keys/puppetsun.example.org.pem]:
> Autorequiring File[/var/lib/puppet/ssl/private_keys]
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[ssl]/File[/
> var/lib/puppet/ssl/csr_puppetsun.example.org.pem]: Autorequiring File[/
> var/lib/puppet/ssl]
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[ssl]/File[/
> var/lib/puppet/ssl/certs/ca.pem]: Autorequiring File[/var/lib/puppet/
> ssl/certs]
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[main]/File
> [/var/lib/puppet/state]: Autorequiring File[/var/lib/puppet]
> debug: /Settings[/etc//opt/csw/puppet/puppet.conf]/Settings[ssl]/File[/
> var/lib/puppet/ssl/private_keys]: Autorequiring File[/var/lib/puppet/
> ssl]
> debug: Finishing transaction 69307580 with 0 changes
> debug: Puppet::Network::Client::File: defining fileserver.describe
> debug: Puppet::Network::Client::File: defining fileserver.list
> debug: Puppet::Network::Client::File: defining fileserver.retrieve
> info: Retrieving plugins
> debug: Calling fileserver.list
> warning: Certificate validation failed; consider using the certname
> configuration option
> err: /File[/var/lib/puppet/lib]: Failed to generate additional
> resources during transaction: Certificates were not trusted:
> SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B:
> certificate verify failed
> debug: /File[/var/lib/puppet/lib]/checksum: Initializing checksum hash
> debug: /File[/var/lib/puppet/lib]: Creating checksum {mtime}Sun Dec 28
> 10:53:11 +1000 1986
> debug: Calling fileserver.describe
> warning: Certificate validation failed; consider using the certname
> configuration option
> err: /File[/var/lib/puppet/lib]: Failed to retrieve current state of
> resource: Certificates were not trusted: SSL_connect returned=1
> errno=0 state=SSLv3 read server certificate B: certificate verify
> failed Could not describe /plugins: Certificates were not trusted:
> SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B:
> certificate verify failed
> debug: Finishing transaction 74984300 with 0 changes
> err: Could not retrieve catalog: private method `chomp' called for
> nil:NilClass
>
> I gather the certs aren't trusted. and what is the certname
> configuration option... i ran a search on the puppet site and got
> bupkis that looked relevant (but i might be blind)...
>
> Cheers
> chakkerz
>
> >
>
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To post to this group, send email to puppet-users@googlegroups.com
To unsubscribe from this group, send email to
puppet-users+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en
-~----------~----~----~----~------~----~------~--~---
