Hi there, On 2019-03-26 12:40 p.m., Matthias Steffens wrote: > I'm trying to get a new certificate for my puppet agent and therefore I > tried to do an '*puppet agent -t*' an I got the following: > > > *root@puppet-node:/etc/puppetlabs/puppet/ssl/certs# puppet agent -tExiting; > no certificate found and waitforcert is disabled*
When your agent didn't create a cert yet, you need to specify an
additional option that'll create the cert and wait for the master to
sign the certificate signing request:
puppet agent -t --waitforcert 10
the integer value to the argument is the number of seconds to wait for
each iteration (I think the number of iterations made before exiting is
limited).
for me 10s is usually a good value, but you can play with this to find
something that gives you the appropriate time to sign certs on the
master (e.g. you probably do want to verify that the client's
certificate fingerprint is what the puppetmaster knows).
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to puppet-users+unsubscr...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/puppet-users/3d003378-818e-6465-f18a-5573f3d38daa%40lelutin.ca.
For more options, visit https://groups.google.com/d/optout.
signature.asc
Description: OpenPGP digital signature
