I have a Ubuntu agent that I did all sorts of things to including revoking the cert. It was a master for awhile and I played with foreman on it. I then went through and apt-get purged all puppet related packages and cleaned out anything left in the file system that had the name "puppet" in it including puppet-common, did an apt-get autoremove.
After the cleanup I went to the master and did a 'puppet cert clean agent.name' and checked 'puppet cert list --all' to be certain it wasn't present, stopped apache2 and made sure all master and passenger services were stopped. Restarted apache2. I went back to the agent, 'sudo apt-get install puppet' and 'sudo puppet agent -t'. It generated the new key using the name I'd expect and cached it, exiting with the message "no certificate found and waitforcert is disabled" I can ping puppet and puppet.mydomain from the agent. It has the proper IP set in /etc/hosts. The master can also ping the agent using the appropriate name with and without domain. I went into /var/lib/puppet/ssl/ca/inventory.txt and removed the reference to the agent. I confirmed nothing was in /var/lib/puppet/ssl/certificate_requests and this agent is not in /var/lib/puppet/ssl/ca/signed and ca/requests is empty. I tried 'locate agentname' and found nothing in the file system. I used tcpdump to confirm that when I run 'puppet agent -t' on the agent it does talk to the master and the master talks back on port 8140. If I run it as 'sudo puppet agent --server puppet.mydomain --no-daemonize --onetime --certname testagent.myotherdomain --waitforcert 60', it dutifully creates a cert and waits while I go to the master and find nothing it the 'puppet cert list'. Every 60 seconds I see 17 packets of info passed around. What else can I do to get this agent back in the pen? Thanks, JSR/ -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To post to this group, send email to puppet-users@googlegroups.com. Visit this group at http://groups.google.com/group/puppet-users. For more options, visit https://groups.google.com/groups/opt_out.
