Problem:
On my Foreman server, candlepin_events
fails to start. hammer ping
shows:
database:
Status: ok
Server Response: Duration: 1ms
cache:
servers:
1) Status: ok
Server Response: Duration: 0ms
candlepin:
Status: ok
Server Response: Duration: 26ms
candlepin_auth:
Status: ok
Server Response: Duration: 15ms
candlepin_events:
Status: FAIL
message: Not running
Server Response: Duration: 0ms
katello_events:
Status: ok
message: 0 Processed, 0 Failed
Server Response: Duration: 0ms
pulp3:
Status: ok
Server Response: Duration: 387ms
pulp3_content:
Status: ok
Server Response: Duration: 64ms
foreman_tasks:
Status: ok
Server Response: Duration: 6ms
And /var/log/candlepin/error.log
shows errors related to user authentication:
2024-09-10 16:18:04,575 [thread=Thread-5 (activemq-netty-threads)] [=, org=, csid=]
WARN org.apache.activemq.artemis.core.server -
AMQ222216: Security problem while authenticating:
AMQ229031: Unable to validate user from 127.0.0.1:37544.
Username: null; SSL certificate subject DN: CN=<*myhost.mydomain*>, OU=PUPPET, O=FOREMAN, ST=North Carolina, C=US
2024-09-10 16:18:04,576 [thread=Thread-5 (activemq-netty-threads)] [=, org=, csid=]
WARN org.apache.activemq.artemis.core.protocol.stomp -
AMQ332069: Sent ERROR frame to STOMP client 127.0.0.1:37544:
Security Error occurred: User name [null] or password is invalid
I’m not sure if it’s related, but when I look at the keystore file for candlepin, it only shows a single entry, the private key:
keytool -list -keystore /etc/candlepin/certs/keystore
Enter keystore password:
Keystore type: PKCS12
Keystore provider: SUN
Your keystore contains 1 entry
tomcat, Aug 30, 2024, PrivateKeyEntry,
Certificate fingerprint (SHA-256): BF:EF:3B:41:7C:31:A5:C4:D1:E0:7D:F4:A6:02:24:BD:BA:71:F3:95:21:13:75:16:2F:86:F2:B2:05:A0:6F:C5
What have I missed?
Foreman and Proxy versions:
Foreman 3.11
Katello 4.13
Candlepin 4.4
Distribution and version:
Alma Linux 8.10