Den*_*nia 5 debian puppet debian-squeeze
我已经为 puppet 建立了一个测试实验室,但它不起作用。我puppet agent在节点上启动并等待证书。
root:~# puppet agent --server xxxx --waitforcert 60 --test
warning: peer certificate won't be verified in this SSL session
warning: peer certificate won't be verified in this SSL session
warning: peer certificate won't be verified in this SSL session
在服务器上,现在找到挂起的证书请求:
root:~# puppet cert --list
root:~#
在 masterhttpd 日志中:
root:~# tail /var/log/puppet/masterhttp.log
[2012-01-06 09:19:17] xxx - - [06/Jan/2012:09:19:17 CET] "GET /production/certificate/xx HTTP/1.1" 404 30
[2012-01-06 09:19:17] - -> /production/certificate/pgw
[2012-01-06 09:19:47] xxx - - [06/Jan/2012:09:19:47 CET] "GET /production/certificate/xx HTTP/1.1" 404 30
[2012-01-06 09:19:47] - -> /production/certificate/pgw
[2012-01-06 09:19:47] xxx - - [06/Jan/2012:09:19:47 CET] "GET /production/certificate/xx HTTP/1.1" 404 30
[2012-01-06 09:19:47] - -> /production/certificate/pgw
[2012-01-06 09:19:47] xxx - - [06/Jan/2012:09:19:47 CET] "GET /production/certificate/xx HTTP/1.1" 404 30
[2012-01-06 09:19:47] - -> /production/certificate/pgw
未找到证书文件。
我建议你启动傀儡代理
$ puppet agent --server=xxxx --test --debug
该命令将为您提供失败原因的更多详细信息。此外,您可能需要留出更多时间才能完成。
您还可以尝试从侧面删除证书(如果有的话)(分别在主服务器和代理服务器上)
puppet --cert --clean your_machine_name
rm -rf /etc/puppet/ssl