Re: [Puppet Users] Re: Thu Nov 29 10:17:51 +0000 2012 Puppet (err): Could not retrieve catalog from remote server: Error 400 on SERVER: Failed to submit 'replace facts' command for XXX to PuppetDB at

If Iam right, puppet usually sends certs with its name $ssldir/certs/.pem and uses private key $ssldir/private_keys/.pem But now how it uses $ssldir/certs/ca.pem and correctly uses private key $ssldir/private_keys/.pem ? And Am I right that puppetdb requires ca.pem signed by private key of ca durin

[Puppet Users] Re: Thu Nov 29 10:17:51 +0000 2012 Puppet (err): Could not retrieve catalog from remote server: Error 400 on SERVER: Failed to submit 'replace facts' command for XXX to PuppetDB at pupp

Thanks Felipe Syncing certs privatekeys with ca_server worked But could somebody help me understand why each masters should have ca server's private key? How exactly this authentication process works? On Thursday, November 29, 2012 11:55:08 PM UTC+5:30, Felipe Salum wrote: > > I had the same setu

[Puppet Users] Thu Nov 29 10:17:51 +0000 2012 Puppet (err): Could not retrieve catalog from remote server: Error 400 on SERVER: Failed to submit 'replace facts' command for XXX to PuppetDB at puppetdb

I have set up two puppet masters (load balanced) with a separate ca server(ca is set false on masters). I brought up a new server for puppetDB. It got certs signed from ca_server and ran puppet agent without any issue. But when I started puppetdb and changed puppet master's conf to use puppetdb