certificate verify failed: [unable to get local issuer certificate
1,898 views
Skip to first unread message
Stella
Oct 17, 2014, 1:28:39 PM10/17/14
to puppet...@googlegroups.com
Hi all,
When I run "puppet agent --test", I got this error:
Error: Could not retrieve catalog from remote server: Error 400 on SERVER:
Failed to submit 'replace facts' command for example.com to PuppetDB at example.com:8081: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed: [unable to get local issuer certificate for /CN=example.com]
It was working before and I don't know what has changed to cause this problem.
Also if I try to access puppet master (https://example.com:8140) on local machine from Firefox, I got error as below, but remote access is working:
Your certificate contains the same serial number as another certificate issued by the certificate authority. Please get a new certificate containing a unique serial number.
(Error code: sec_error_reused_issuer_and_serial)
thanks,
Stacey
When I run "puppet agent --test", I got this error:
Error: Could not retrieve catalog from remote server: Error 400 on SERVER:
Failed to submit 'replace facts' command for example.com to PuppetDB at example.com:8081: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed: [unable to get local issuer certificate for /CN=example.com]
It was working before and I don't know what has changed to cause this problem.
Also if I try to access puppet master (https://example.com:8140) on local machine from Firefox, I got error as below, but remote access is working:
Your certificate contains the same serial number as another certificate issued by the certificate authority. Please get a new certificate containing a unique serial number.
(Error code: sec_error_reused_issuer_and_serial)
thanks,
Stacey
Craig White
Oct 17, 2014, 1:59:50 PM10/17/14
to puppet...@googlegroups.com
did you make some changes because of Poodle? state=SSLv3
as for Firefox - probably just need to go into Firefox preferences and delete the certificate that you stored already but it does seem strange that you have 2 certificates with the same serial #
Stella
Oct 17, 2014, 4:58:46 PM10/17/14
to puppet...@googlegroups.com
Hi Craig,
Thanks a million! It is due to Poodle? state=SSLv3. After I commented out SSLv3, it works fine. Now I can have a good weekend, hehe...
Thanks a million! It is due to Poodle? state=SSLv3. After I commented out SSLv3, it works fine. Now I can have a good weekend, hehe...
Reply all
Reply to author
Forward
0 new messages