I regenerated the puppetdb certs according to the instructions here: Step 3, Option B
https://docs.puppetlabs.com/puppetdb/0.9/install_from_source.html#step-3-option-b-manually-create-a-keystore-and-truststore And can verify the cert manually using openssl client #echo "QUIT" | openssl s_client -connect puppetdb:8081 -CAfile /etc/ssl/certs/puppetdb.pem |grep Verify Verify return code: 0 (ok) However I still get the following: err: Could not retrieve catalog from remote server: Error 400 on SERVER: Failed to submit 'replace facts' command for host23.example.com to PuppetDB at puppetdb:8081: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed: [certificate signature failure for /CN=puppetdb] Where do I place the certs so they are validated by the puppetdb terminus? -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To view this discussion on the web visit https://groups.google.com/d/msg/puppet-users/-/uqqpL4YG9g8J. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-users?hl=en.
