Certificate Regeneration issues on Windows agent

[Subhi Andrews]

We tried to point our working windows agent to a different puppet master and we can't get the certificate to generate with the new puppet server or revert back to the old one. In both puppet master cases, we get the following error:

Info: Caching certificate for pfawseot01.xyz.com

Error: Could not request certificate: The certificate retrieved from the master does not match the agent's private key.

Certificate fingerprint: <certficate>

To fix this, remove the certificate from both the master and the agent and then start a puppet run, which will automatic

ally regenerate a certficate.

On the master:

  puppet cert clean pfawseot01.xyz.com

On the agent:

  1a. On most platforms: find C:/ProgramData/PuppetLabs/puppet/etc/ssl -name pfawseot01.xyz.com.pem -delete

  1b. On Windows: del "C:/ProgramData/PuppetLabs/puppet/etc/ssl/pfawseot01.xyx.com.pem" /f

  2. puppet agent -t

Tried following the above instruction. Also deleted cached catalog on the agent, but keeps giving the same error message. Any clues, or suggestions?

Thanks,