You may also find the following link useful:
http://itand.me/using-puppet-to-manage-users-passwords-and-ss
Martinus.
On Tuesday, 10 July 2012 12:49:42 UTC+1, Ganesh Ganesh wrote:
>
> Hi Guys,
>
> I am new to puppet world, Guys I want create a user with password,
> with affec
t sure
if those differences is a red herring, as those lines are different again
compared to another working system.
On the master certificate, under alternative name, both "puppet.tld" and
"mymaster.tld" is listed. All my clients points to "mymaster.tld" as the
serve
It would also help if I call people by their right name, sorry Matt :)
On Friday, 6 July 2012 11:02:10 UTC+1, Matthew Burgess wrote:
>
> > As an additional note, when I stop apache and start puppetmaster with
> its
> > inbuilt web server, then these 3 clients are happy.
>
> Ah, that triggered a
Martin,
Everything is worth a try !
But it did not work :(
I commented out that line (SSLCARevocationFile) and restarted apache. No
change on the working servers, good. No change on the broken servers, bad.
Martinus.
On Friday, 6 July 2012 11:02:10 UTC+1, Matthew Burgess wrote:
>
>
, those changes makes no difference.
Martinus.
On Friday, 6 July 2012 10:19:10 UTC+1, Martin Alfke wrote:
>
>
> On 06.07.2012, at 11:09, Martinus wrote:
>
> There is nothing to clean, as "puppet cert --list" or "puppet cert --list
> --all" does not have a
tmaster with its
inbuilt web server, then these 3 clients are happy.
Martinus.
On Friday, 6 July 2012 09:46:38 UTC+1, Martin Alfke wrote:
>
> On puppet master:
> puppet cert --clean
>
> on client:
> rm -fr /var/lib/puppet/ssl/*
> puppet agent --test
>
> check on master for
patchlevel
352)
The SSLDir line looks like this: "ssldir = /var/lib/puppet/ssl" on all
systems (config file is copied across systems). I checked, and the
standard set of directories are there and owned by Puppet.
However, crl.pem is not present like on the working systems.
Martinus.
On
I have a problem on 3 out of ~40 servers that gives the following error:
err: Could not request certificate: SSL_connect returned=1 errno=0
state=unknown state: sslv3 alert handshake failure
>From previous posts, I made sure that SSLVerifyClient is set to optional.
I also cleared /var/lib/pupp