Failed to submit 'replace facts'
176 views
Skip to first unread message
Harshita Sinha
Dec 20, 2013, 4:46:07 AM12/20/13
to puppet...@googlegroups.com, Harshita Sinha
Hi All,
Following the instructions on http://www.copperykeenclaws.com/setting-up-puppet-on-windows/#comment-1201 I was able to connect Windows Agent to Puppet Master.
Since my VM got disconnected, I thought of again connecting again and I cleared all the certificates from Windows-Agent as well as Unix-Master.
I cleared ca.pem file from the Agent, and ca.pem and learn.localdomain.pem from the master.
After deleting all the certificates, I attempted to execute the command
puppet agent --test --verbose --server learn.localdomain .
I got response as
Info: Caching certificate for ca
Info: Caching certificate for igtggn11002.interglobetechnologies.com
Info: Retrieving plugin
Info: Loading facts in C:/ProgramData/PuppetLabs/puppet/var/lib/facter/concat_basedir.rb
Info: Loading facts in C:/ProgramData/PuppetLabs/puppet/var/lib/facter/custom_auth_conf.rb
Info: Loading facts in C:/ProgramData/PuppetLabs/puppet/var/lib/facter/facter_dot_d.rb
Info: Loading facts in C:/ProgramData/PuppetLabs/puppet/var/lib/facter/ip6tables_version.rb
Info: Loading facts in C:/ProgramData/PuppetLabs/puppet/var/lib/facter/iptables_persistent_version.rb
Info: Loading facts in C:/ProgramData/PuppetLabs/puppet/var/lib/facter/iptables_version.rb
Info: Loading facts in C:/ProgramData/PuppetLabs/puppet/var/lib/facter/pe_version.rb
Info: Loading facts in C:/ProgramData/PuppetLabs/puppet/var/lib/facter/postgres_default_version.rb
Info: Loading facts in C:/ProgramData/PuppetLabs/puppet/var/lib/facter/puppetdb_server_status.rb
Info: Loading facts in C:/ProgramData/PuppetLabs/puppet/var/lib/facter/puppet_vardir.rb
Info: Loading facts in C:/ProgramData/PuppetLabs/puppet/var/lib/facter/root_home.rb
Info: Loading facts in C:/ProgramData/PuppetLabs/puppet/var/lib/facter/windows.rb
Error: Could not retrieve catalog from remote server: Error 400 on SERVER: Faile
d to submit 'replace facts' command for igtggn11002.interglobetechnologies.com t
o PuppetDB at learn.localdomain:8081: SSL_connect SYSCALL returned=5 errno=0 sta
te=SSLv3 read finished A
Warning: Not using cache on failed catalog
Error: Could not retrieve catalog; skipping run
Why is it not attempting to create the new certificate ? Why is it caching for ca, when I already deleted ca.pem ?
RESTART PUPPET AGENT
I refered the link https://ask.puppetlabs.com/question/3853/error-400-on-server-failed-to-submit-replace-facts-command-connection-refused/ and tried to restart my agent but I get an error as
C:\Program Files (x86)\Puppet Labs\Puppet Enterprise\bin>service pe-puppet restart
'service' is not recognized as an internal or external command,
operable program or batch file.
Thanks,
Harshita
Harshita Sinha
Dec 20, 2013, 6:56:17 AM12/20/13
to puppet...@googlegroups.com, Harshita Sinha
Hi All,
I again attempted to execute the command puppet agent --test --verbose --server learn.localdomain, and I continue to get the same error :(
Surprisingly, I found that the certificates are created both in Windows agent and the Master .
The files created in master under the folder /etc/puppetlabs/puppet/ssl/certs are (1) ca.pem and (2) learn.localdomain.pem
The files created in Windows agent under the folder path C:\ProgramData\PuppetLabs\puppet\etc\ssl\certs are (1) ca.pem and (2) igtggn11002.interglobetechnologies.com.pem
I assume they are certificates that are created after Master and agent have had a hand shake .
Can you please guide me, what is the next step I should do to resolve the replace facts ? What should I do ?
Thanks,
Harshita
Jason Antman
Dec 20, 2013, 7:43:46 AM12/20/13
to puppet...@googlegroups.com
Harshita,
That error message sounds like your certificate problem is with PuppetDB, not the agent to the master.
the master is learn.localdomain.pem and the windows agent is the one with the utterly useless hostname (igtggn*)?
Every node (master and agent alike) will always generate their own certificate when they start, if it isn't there yet. The fact that ca.pem is on the agent looks promising. But until you see the igtggn* cert show up on the *master* it doesn't mean they've authenticated.
Is there any way to view the logs/output of the agent on windows? If this were a unix agent, I'd run it with --debug to figure out what's happening. If you're able to do that, posting the log output would give us a little more information to help you...
-jantman
That error message sounds like your certificate problem is with PuppetDB, not the agent to the master.
the master is learn.localdomain.pem and the windows agent is the one with the utterly useless hostname (igtggn*)?
Every node (master and agent alike) will always generate their own certificate when they start, if it isn't there yet. The fact that ca.pem is on the agent looks promising. But until you see the igtggn* cert show up on the *master* it doesn't mean they've authenticated.
Is there any way to view the logs/output of the agent on windows? If this were a unix agent, I'd run it with --debug to figure out what's happening. If you're able to do that, posting the log output would give us a little more information to help you...
-jantman
--
You received this message because you are subscribed to the Google Groups "Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/CAP%3D1m3b6g_iOY4nePu2YVbFuXWy8T0stcjzMhfbCXm%2BOQDfLjQ%40mail.gmail.com.
For more options, visit https://groups.google.com/groups/opt_out.
Harshita Sinha
Dec 23, 2013, 3:44:25 AM12/23/13
to puppet...@googlegroups.com
Hi Jason,
Thanks for your guidance.
Whatever relevant logs I could trace, I have attached for your reference.
Kindly find the attached log - puppetdb.log from the path /var/log/pe-puppetdb from the master attached is puppetdb.log
I could not find any other master related logs under /var/log .
If there is any specific you are looking for, kindly let me know.
The only log from Windows agent that I could get is from C:\ProgramData\PuppetLabs\puppet\var\log which is windows.log.
Thanks,
Harshita
Reply all
Reply to author
Forward
0 new messages