文档建议反馈控制台
首页
学习
活动
专区
圈层
工具
MCP广场
文章/答案/技术大牛
发布
社区首页 >问答首页 >伪主证书生成不起作用

伪主证书生成不起作用
EN

DevOps用户
提问于 2017-09-24 09:27:04
回答 1查看 893关注 0票数 1

傀儡主人:

  • 带有分号的码头集装箱-OS-6
  • 在/etc/主机中配置
  • 配置/etc/puppet.conf(服务器、dns_alt_names和certname )

傀儡代理:

  • 带有ubuntu OS的码头集装箱
  • 在/etc/主机中配置服务器和代理ip
  • 配置具有服务器值的/etc/puppet.conf

现在尝试用

在服务器机器中生成证书

代码语言:javascript
复制
sudo -u puppet puppet master --no-daemonize --verbose

显示:Notice: Starting Puppet master version 3.8.7

与证书生成相关的任何事情都不会发生。

我相信在主机文件和其他配置中没有遗漏任何错误。这里可能出了问题。

在客户端机器中,如果我运行这个命令傀儡代理-t。我得到以下错误。因为证书不是在服务器中生成的。我想我得先解决这个问题。

代码语言:javascript
复制
Warning: Unable to fetch my node definition, but the agent run will continue:
Warning: Server hostname 'www.puppetmaster.com' did not match server certificate; expected one of puppetcertificate, DNS:puppet www.puppetmaster.com, DNS:puppetcertificate
Info: Retrieving pluginfacts
Error: /File[/var/lib/puppet/facts.d]: Failed to generate additional resources using 'eval_generate': Server hostname 'www.puppetmaster.com' did not match server certificate; expected one of puppetcertificate, DNS:puppet www.puppetmaster.com, DNS:puppetcertificate
Error: /File[/var/lib/puppet/facts.d]: Could not evaluate: Could not retrieve file metadata for puppet://www.puppetmaster.com/pluginfacts: Server hostname 'www.puppetmaster.com' did not match server certificate; expected one of puppetcertificate, DNS:puppet www.puppetmaster.com, DNS:puppetcertificate
Info: Retrieving plugin
Error: /File[/var/lib/puppet/lib]: Failed to generate additional resources using 'eval_generate': Server hostname 'www.puppetmaster.com' did not match server certificate; expected one of puppetcertificate, DNS:puppet www.puppetmaster.com, DNS:puppetcertificate
Error: /File[/var/lib/puppet/lib]: Could not evaluate: Could not retrieve file metadata for puppet://www.puppetmaster.com/plugins: Server hostname 'www.puppetmaster.com' did not match server certificate; expected one of puppetcertificate, DNS:puppet www.puppetmaster.com, DNS:puppetcertificate
Error: Could not retrieve catalog from remote server: Server hostname 'www.puppetmaster.com' did not match server certificate; expected one of puppetcertificate, DNS:puppet www.puppetmaster.com, DNS:puppetcertificate
Warning: Not using cache on failed catalog
Error: Could not retrieve catalog; skipping run
Error: Could not send report: Server hostname 'www.puppetmaster.com' did not match server certificate; expected one of puppetcertificate, DNS:puppet www.puppetmaster.com, DNS:puppetcertificate
puppet
EN

回答 1

DevOps用户

发布于 2017-09-24 14:37:30

首先,尝试在/etc/puppet.conf中设置dns_丙氨酸氨基转移酶_名字

代码语言:javascript
复制
[main]
    dns_alt_names = www.puppetmaster.com
[master]
    autosign = true

然后看看您的傀儡代理-t运行是否正常。请确保您已经在/etc/puppet.conf中正确设置了傀儡客户端上的服务器:

代码语言:javascript
复制
[agent]
    server = www.puppetmaster.com
票数 2
EN
页面原文内容由DevOps提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:

https://devops.stackexchange.com/questions/2128

复制
相关文章

相似问题

领券

腾讯云开发者

扫码关注腾讯云开发者

扫码关注腾讯云开发者

领取腾讯云代金券

热门产品

热门推荐

更多推荐

Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有 

深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 粤公网安备44030502008569号

腾讯云计算(北京)有限责任公司 京ICP证150476号 |  京ICP备11018762号

问题归档专栏文章快讯文章归档关键词归档开发者手册归档开发者手册 Section 归档