On Apr 21, 2010, at 11:30 AM, Jewels wrote: > I have a problem I can't figure out. I was having cert problems with a > host - it seemed to have multiple host names (mot likely from dns > changes in the past) and all the certs were valid. Although it was > giving an error about a cert I could not identify. So I tried: > > puppetca --revoke hostname > puppetca --clean hostname > > restart puppetmaster > > puppetca --list --all > (host does not show up - good) > > On client re-issue puppetd --server puppet --waitforcert 30 --test > > Error is : > > err: Could not retrieve catalog: Certificates were not trusted: sslv3 > alert certificate revoked > > So how do I get rid of it? I can't find a cert anywhere with either a > valid cert or revoked.. Did I do this wrong? How do you remove and re- > add a host?
My best guess is that you didn't actually tell the client to get a new cert. A trivial (and overkill) way to do that is to wipe the puppet var directory on the CLIENT. It should be one of these. /var/puppet /var/lib/puppet /etc/puppet/var Just shutdown puppet, move the directory somewhere else, and see if that fixes it. -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-us...@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
