Versions Compared

Old Version 2

changes.mady.by.user Massimo Sgaravatto

Saved on

compared with

New Version Current

changes.mady.by.user Lisa Zangrando

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.


CentOS8 host


Code Block
languagebash
yum install epel-release

...



yum install puppet


Create the file etcThen create the file puppet.conf in /etc/puppet/ or /etc/puppetlabs/puppet/ puppet.conf  (the path depends on the version of puppet) with this content (replace 'cld-rbt-test-03' with your hostname):

...

Code Block
languagebash
# This file can be used to override the default puppet settings.
# See the following links for more details on what settings are available:
# - https://puppet.com/docs/puppet/latest/config_important_settings.html
# - https://puppet.com/docs/puppet/latest/config_about_settings.html
# - https://puppet.com/docs/puppet/latest/config_file_main.html
# - https://puppet.com/docs/puppet/latest/configuration.html
[agent]
server=cld-foremanconfig.cloud.pd.infn.it
environment=production
ca_server=cld-foremanconfig.cloud.pd.infn.it
certname=cld-rbt-test-03.cloud.pd.infn.it

...

Code Block
languagebash
root@cld-rbt-test-03 ~]# puppet agent -t
Info: Creating a new RSA SSL key for cld-rbt-test-03.cloud.pd.infn.it
Info: csr_attributes file loading from /etc/puppetlabs/puppet/csr_attributes.yaml
Info: Creating a new SSL certificate request for cld-rbt-test-03.cloud.pd.infn.it
Info: Certificate Request fingerprint (SHA256): 16:A6:29:B2:E6:C0:B9:14:7E:62:74:E6:58:5C:0E:33:36:7E:7C:88:5E:32:EE:EB:70:DD:31:EE:DC:3A:1E:FD
Info: Certificate for cld-rbt-test-03.cloud.pd.infn.it has not been signed yet
Couldn't fetch certificate from CA server; you might still need to sign this agent's certificate (cld-rbt-test-03.cloud.pd.infn.it).
Exiting now because the waitforcert setting is set to 0.


In case of errors (because the host was already in puppet) see


Code Block
[root@cld-config files]# puppetserver ca clean --certname cld-rb-test-03.cloud.pd.infn.it



See also Risolvere problema con i certificati (puppet agent -t)


On cld-foremanconfig:


[

Code Block
languagebash
root@cld-foremanconfig modules]# puppetserver ca sign --all
Successfully signed certificate request for cld-rbt-test-03.cloud.pd.infn.it
[root@cld-foremanconfig modules]#


Run again puppet on the host:

...