Hi All,
I am having some problems getting PuppetDB and SSL to work. I build an test
environment in Vagrant without any problems but when it try and deploy it
to my production environment I can't seem to get it to work with SSL. I
followed the instructions on the puppetlabs website and I made sure I could
do an successful puppet run before installing PuppetDB:
(changed the hostname/company name)
# puppet agent --test
info: Caching catalog for hostname.company.local
info: Applying configuration version '1347960542'
notice: Finished catalog run in 2.04 seconds
But when I try to reach the dashboard it get an error:
The connection was interrupted
The connection to xxx.xxx.xxx.xxx:8081 was interrupted while the page
was loading.
When I check the puppetdb log file I see the following error:
2012-09-19 10:39:24,016 WARN [qtp1281335597-66] [io.nio]
javax.net.ssl.SSLException: Received fatal alert: unknown_ca
2012-09-19 10:39:49,182 WARN [qtp1281335597-67] [io.nio]
javax.net.ssl.SSLHandshakeException: null cert chain
2012-09-19 10:39:49,218 WARN [qtp1281335597-66] [io.nio]
javax.net.ssl.SSLHandshakeException: null cert chain
2012-09-19 10:39:49,251 WARN [qtp1281335597-67] [io.nio]
javax.net.ssl.SSLProtocolException: handshake alert: no_certificate
I checked the jetty.ini file and made sure both the keystore and truststore
exist. It also has an key-password and trust-password set. I changed the
jetty.ini file to allow http connections and then I can reach the dashboard
via http without any problems. Does anybody have an idea what could be
wrong ?
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To view this discussion on the web visit
https://groups.google.com/d/msg/puppet-users/-/WPI1PwUzRvEJ.
To post to this group, send email to puppet-users@googlegroups.com.
To unsubscribe from this group, send email to
puppet-users+unsubscr...@googlegroups.com.
For more options, visit this group at
http://groups.google.com/group/puppet-users?hl=en.
