Puppet - clearing invalid certificates

1. On the client, stop puppet
2. On the master: puppet cert --clean hostname.domain.com (puppet cert list --all will list all certs)
3. On client: rm -rf /var/lib/puppet
4. On client: start puppet  

Other debugging tips:

  • puppet cert list - -all will show all certs on the puppet master
  • start agent in debug node: puppet agent –server puppet –no-daemonize –debug
  • Check puppet configuration: puppet config print all
  • Check firewall restrictions, from agent server: telnet puppet 8140
  • Check agent and server can resolve each other, e.g. from puppet master, getent hosts agent-server.example.com . Add to /etc/hosts if they can't

Recent Changes

Contribute to this wiki

Why not help others by sharing your knowledge? Contribute something to this wiki and join out hall of fame!
Contact us for a user name and password