There was no current cert. It was a new host. The cert was generated using the FQDN..
On Thursday, 12 July 2012 04:42:51 UTC+2, Pete wrote: > > Hi, > > Your config looks about right. > Did you drop the current cert and request and sign a new one? > > On 11 July 2012 19:14, Kmbu wrote: > > Hi guys, > > > > I have a box that needs to identify itself to the puppetmaster as > something > > different from the FQDN. I added certname to the agent configuration > before > > the first run, but it doesn't seem to be sufficient. The certificate was > > generated for the FQDN, and the host appears in the dashboard as the > FQDN, > > and the node name used to evaluate the manifest is also the FQDN. I > would > > like to set it up so that, for all intents and purposes, the node/agent > has > > a different name. > > > > I'm running Puppet 2.7.6 via Apache/Passenger. > > > > Here is my agent config: > > > > [agent] > > > > # Whether log files should always flush to disk. > > autoflush = true > > > > # Reporting setup for Puppet Dashboard > > report = true > > > > # Randomize agent runs to avoid clusters > > splay = true > > > > # The main Puppet configuration directory. The default for this > > parameter is calculated based on the user. If the process > > # is running as root or the user that Puppet is supposed to run as, > it > > defaults to a system directory, but if it's running as any other user, > > # it defaults to being in the user's home directory. > > # The default value is '/etc/puppet'. > > confdir = <confdir> > > > > # Where Puppet stores dynamic and growing data. The default for > this > > parameter is calculated specially, like `confdir`_. > > # The default value is '/var/lib/puppet'. > > vardir = <vardir> > > > > # Whether to print stack traces on some errors > > trace = true > > > > # How often puppet agent applies the client configuration; in > seconds. > > Note that a runinterval of 0 means run continuously rather than never > run. > > # If you want puppet agent to never run, you should start it with > the > > --no-client option. > > runinterval = 300 > > > > # Whether to use colors when logging to the console. > > # Valid values are `ansi` (equivalent to `true`), `html` (mostly > > # used during testing with TextMate), and `false`, which produces > > # no color. > > # The default value is 'ansi'. > > color = ansi > > > > # The environment Puppet is running in. For clients > > # (e.g., `puppet agent`) this determines the environment itself, > which > > # is used to find modules and much more. For servers (i.e., `puppet > > master`) this provides the default environment for nodes > > # we know nothing about. > > # The default value is 'production'. > > environment = pre > > > > # Where to find information about nodes. > > # The default value is 'plain'. > > # node_terminus = plain > > > > # Where the puppet agent web server logs. > > # The default value is '$logdir/http.log'. > > httplog = <logpath>/http.log > > > > # Send the process into the background. This is the default. > > # The default value is 'true'. > > daemonize = true > > > > # The name to use when handling certificates. Defaults > > # to the fully qualified domain name. > > certname = <dns-name-here> > > > > # Where Puppet should look for facts. Multiple directories should > > # be colon-separated, like normal PATH variables. > > # The default value is '$vardir/lib/facter:$vardir/facts'. > > factpath = $vardir/lib/facter:$vardir/facts > > > > # From where to retrieve facts. The standard Puppet `file` type > > # is used for retrieval, so anything that is a valid file source can > > # be used here. > > # The default value is 'puppet://$server/facts/'. > > factsource = puppet://<puppetmaster>/facts/ > > > > # The pid file > > # The default value is '$rundir/$name.pid'. > > pidfile = <vardir>/agent.pid > > > > # The user puppet master should run as. > > # The default value is 'puppet'. > > user = apache > > > > # The group puppet master should run as. > > # The default value is 'puppet'. > > group = apache > > > > # Wether the master should function as a certificate authority. > > # The default value is 'true'. > > ca = true > > > > # The search path for modules as a list of directories separated by > the > > ':' character. > > # The default value is '$confdir/modules:/usr/share/puppet/modules'. > > modulepath = <datadir>/modules > > > > # The explicit value used for the node name for all requests the > agent > > # makes to the master. WARNING: This setting is mutually exclusive > with > > # node_name_fact. Changing this setting also requires changes to > the > > default > > # auth.conf configuration on the Puppet Master. Please see > > # http://links.puppetlabs.com/node_name_value for more information. > > # The default value is '$certname'. > > # node_name_value = > > > > # The server to which server puppet agent should connect > > # The default value is 'puppet'. > > server = <puppetmaster> > > > > # Which port puppet agent listens on. > > # The default value is '8139'. > > puppetport = 8139 > > > > # Document all resources > > # document_all = false > > > > What am I missing? > > > > Regards, > > > > -- > > You received this message because you are subscribed to the Google > Groups > > "Puppet Users" group. > > To view this discussion on the web visit > > https://groups.google.com/d/msg/puppet-users/-/Zb5d1ZmpTssJ. > > To post to this group, send email to puppet-users@googlegroups.com. > > To unsubscribe from this group, send email to > > puppet-users+unsubscr...@googlegroups.com. > > For more options, visit this group at > > http://groups.google.com/group/puppet-users?hl=en. > -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To view this discussion on the web visit https://groups.google.com/d/msg/puppet-users/-/ygOrKuNpPIgJ. To post to this group, send email to puppet-users@googlegroups.com. To unsubscribe from this group, send email to puppet-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
