Hostname was not match with the server certificate

3,804 views
Skip to first unread message

Dmytro Bablinyuk

unread,
Dec 14, 2010, 1:16:11 AM12/14/10
to Puppet Users
Hi Everybody,

I have 2 machines, one that running puppetmasterd and another one that
running client.
Both run Ubuntu.

First I installed 2.25.4 (I think) version and then I have upgraded
Puppet to 2.6.4

Server does not have any DNS entry, so I am trying to use IP address
for the client to connect. Client generates some certificate error.

root@puppet-client-ubuntu:~# puppetd --server 172.16.48.105 --
waitforcert 60 --test
info: Retrieving plugin
err: /File[/var/lib/puppet/lib]: Failed to generate additional
resources using 'eval_generate': hostname was not match with the
server certificate
err: /File[/var/lib/puppet/lib]: Could not evaluate: hostname was not
match with the server certificate Could not retrieve file metadata for
puppet://172.16.48.105/plugins: hostname was not match with the server
certificate
err: Could not retrieve catalog from remote server: hostname was not
match with the server certificate
warning: Not using cache on failed catalog
err: Could not retrieve catalog; skipping run

root@puppet-client-ubuntu:~# puppet --version
2.6.4

I am very new to Puppet and most likely I am missing something very
simple.
Any help greatly appreciated

Thank you very much
Dmytro

Nan Liu

unread,
Dec 14, 2010, 2:17:32 AM12/14/10
to puppet...@googlegroups.com

The hostname 172.16.48.105 used in --server option does not match the
CN or Subject Alternative Name presented in the certificate.

If you are using defaults, add an entry in /etc/hosts for puppet to
172.16.48.105 and connect without the --server option (server hostname
puppet is used by default).

I recommend reading Bruce's blog entry for more details:
http://www.masterzen.fr/2010/11/14/puppet-ssl-explained/

Thanks,

Nan

Dmytro Bablinyuk

unread,
Dec 14, 2010, 5:15:30 PM12/14/10
to Puppet Users
Thank you very much!
It worked!

On Dec 14, 6:17 pm, Nan Liu <n...@puppetlabs.com> wrote:
Reply all
Reply to author
Forward
0 new messages