On Mon, Aug 31, 2009 at 4:46 PM, Justin Kinney<jaki...@gmail.com> wrote: > >> You can see my settings in the above pastie, Apache starts fine and >> appears to function fine. However when I run puppetd --test on any node >> I receive the following error: >> >> warning: Certificate validation failed; consider using the certname >> configuration option >> err: Could not retrieve catalog: Certificates were not trusted: hostname >> was not match with the server certificate >> warning: Not using cache on failed catalog > > Triple check your name resolution. I ran into the same error message > while using two puppet servers (one for test, one for production), > with the CNAME pointing to the wrong host. Even if you specify the > correct server in puppet.conf with the servername option, if you have > a CNAME pointing to the wrong host, you'll get that error. > > You could also try to cleanup any old certificates using "puppetca > --clean machine1.example.com" and "puppetca --clean > machine2.example.com". Then run "puppetca --generate > machine2.example.com". Restart apache and try the puppet client > again. > > Hope this helps, > --Justin _______
Today I resolved the exact same error on my first test setup. The problem was that the client's date/time was in the future in relation to the server's date/time. The problem went away once I configured the correct date on the client. ~af --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en -~----------~----~----~----~------~----~------~--~---
