Reg : SSL Certificate

[krishna bhaskara rao]

Hi,

I have generated SSL certificate in puppet master with domain "test.com" and then moved to below files to puppet agent SSL directory.

                        certs/test.com.pem, 

                        private_keys/test.com.pem, 

                        public_keys/test.com.pem and certs/ca.pem. 

Then I am trying to issue puppet agent -t --debug in agent, getting an error.

            Info: Creating a new SSL key for test.com

            Info: Caching certificate for ca

            Info: Caching certificate for test.com

            Error: Could not request certificate: The certificate retrieved from the master does not match the agent's private key.

Please suggest me How to resolve this issue, Shall I need to disable regeneration of key, if yes how to disable.

With Regards,

Krishna. 

[Felix Frank]

Hi,

are you quite certain you moved those .pem files to the correct
location? Apparently, the agent won't pick them up.

Look at the config very carefully, and find out where the new key has
been generated. The agent should not just overwrite the key you had
imported.

HTH,
Felix

On 01/28/2014 03:36 PM, krishna bhaskara rao wrote:
> I have generated SSL certificate in puppet master with domain "test.com"
> and then moved to below files to puppet agent SSL directory.
> certs/test.com.pem,
> private_keys/test.com.pem,
> public_keys/test.com.pem and certs/ca.pem.
>

> Then I am trying to issue *puppet agent -t --debug* in agent, getting an
> error.
> Info: *Creating a new SSL key for test.com*