Hi Russell, On the client, verify that the ssl dir is set to /etc/puppet/ssl (check puppet.conf). Remove the ssl dir contents.
On server, do a 'find' on the old/new hostname in the ssl dir. Remove any file match. On the client, run puppet --waitforcert 60 --server .... Should clear those issues. Sounds like you might have ssl in the var lib dir maybe? Cheers Den On 08/03/2011, at 11:29, "russell.fulton" <russell.ful...@gmail.com> wrote: > I have an RHE host that is managed by puppet. Some how it got the > wrong host name in the rhn/systemid file which seemed to override > everything else. > > I fixed this and rebooted the box and it came back with the correct > host name which it got via dhcp. > > I removed the /etc/puppet/ssl directory on the client and did a > pupetca --clean <old name> on the server. > > but now when I run puppetd I get: > > [rful011@mon225044 ~]$ sudo /usr/sbin/puppetd --test > info: Creating a new SSL key for mon225044.insec.auckland.ac.nz > warning: peer certificate won't be verified in this SSL session > info: Caching certificate for ca > warning: peer certificate won't be verified in this SSL session > info: Caching certificate for mon225044.insec.auckland.ac.nz > err: Could not request certificate: Retrieved certificate does not > match private key; please remove certificate from server and > regenerate it with the current key > > It would really help with if these messages stated explicitly which > keys and certs don't match. I have gone through the /ssl dir with > find looking for anything related to the old host name but failed to > find anything. > > Suggestions on what to try next? > > Russell > > -- > You received this message because you are subscribed to the Google Groups > "Puppet Users" group. > To post to this group, send email to puppet-users@googlegroups.com. > To unsubscribe from this group, send email to > puppet-users+unsubscr...@googlegroups.com. > For more options, visit this group at > http://groups.google.com/group/puppet-users?hl=en. > -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
