Hi > Jun 30 16:20:02 puppetd[22640]: Could not retrieve catalog: > Certificates were not trusted: hostname was not match with the server > certificate > > I guess it happens because puppetd clients are expecting the > puppetmaster to have FQDN name of the router which is not the case... > Is there a workaround for this?
I assume that you use a different FQDN internal and external, right? So then: the puppet masters cert and CA needs to contain the public FQDN as well. use certnames (see ConfigurationReference [1]) to include both domains, local and public. This will mean that you need to regenerate the certs, as well to resign all clients. cheers pete [1] http://reductivelabs.com/trac/puppet/wiki/ConfigurationReference --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
