Problem:
My apologies as I am a real novice with this, but have years of unix/linux experience. Unfortunately, never dealt with certs.
I am new to katello/Foreman. I am unable to update most not all servers with error:
Host did not respond within 20 seconds. The task has been cancelled. Is katello-agent installed and goferd running on the Host?
Forman/katello is installed on CentOS Linux release 7.6.1810 (Core)
This installation is only used to patch/update linux servers, centOS6/7, redhat6/7
Expected outcome:
Any help would be great to enable me to update linux systems and fix cert errors. secops is on my case…
Foreman and Proxy versions:
Foreman version: 1.16.2
Active features
Templates, Pulp, TFTP, Puppet, Puppet CA, and Logs
Foreman and Proxy plugin versions:
This is what is installed:
[root@ pub]# rpm -qa|grep katello
katello-service-3.5.2-1.el7.noarch
katello-repos-3.5.2-1.el7.noarch
foreman-installer-katello-3.5.2-1.el7.noarch
katello-certs-tools-2.4.0-1.el7.noarch
pulp-katello-1.0.2-1.el7.noarch
tfm-rubygem-hammer_cli_katello-0.11.5-1.el7.noarch
katello-server-ca-1.0-1.noarch
katello-debug-3.5.2-1.el7.noarch
katello-default-ca-1.0-1.noarch
katello-installer-base-3.5.2-1.el7.noarch
katello-3.5.2-1.el7.noarch
tfm-rubygem-katello-3.5.2-1.el7.noarch
katello-common-3.5.2-1.el7.noarch
katello-selinux-3.0.3-1.el7.noarch
[root@ pub]# rpm -qa|grep foreman
foreman-selinux-1.16.2-1.el7.noarch
tfm-rubygem-hammer_cli_foreman_bootdisk-0.1.3-5.el7.noarch
foreman-proxy-1.16.2-1.el7.noarch
foreman-release-scl-3-1.el7.noarch
foreman-installer-katello-3.5.2-1.el7.noarch
foreman-debug-1.16.2-1.el7.noarch
tfm-rubygem-hammer_cli_foreman_docker-0.0.4-2.el7.noarch
tfm-rubygem-foreman_docker-3.2.1-1.fm1_16.el7.noarch
kopas0201.vertexinc.com-foreman-proxy-client-1.0-1.noarch
foreman-installer-1.16.2-1.el7.noarch
tfm-rubygem-hammer_cli_foreman_tasks-0.0.12-1.fm1_16.el7.noarch
tfm-rubygem-foreman_virt_who_configure-0.1.1-1.fm1_16.el7.noarch
tfm-rubygem-foreman-tasks-0.10.9-1.fm1_16.el7.noarch
foreman-compute-1.16.2-1.el7.noarch
foreman-1.16.2-1.el7.noarch
foreman-cli-1.16.2-1.el7.noarch
kopas0201.vertexinc.com-foreman-proxy-1.0-1.noarch
kopas0201.vertexinc.com-foreman-client-1.0-1.noarch
tfm-rubygem-foreman-tasks-core-0.2.4-1.fm1_16.el7.noarch
tfm-rubygem-hammer_cli_foreman-0.11.0-1.el7.noarch
foreman-release-1.16.2-1.el7.noarch
foreman-postgresql-1.16.2-1.el7.noarch
Other relevant data:
[e.g. logs from Foreman and/or the Proxy, modified templates, commands issued, etc]
(for logs, surround with three back-ticks to get proper formatting, e.g.)
logs
openssl s_client -connect xmlrpc.rhn.redhat.com:443 -CAfile /usr/share/rhn/RHNS-CA-CERT
140666848540560:error:02001002:system library:fopen:No such file or directory:bss_file.c:175:fopen('/usr/share/rhn/RHNS-CA-CERT','r')
140666848540560:error:2006D080:BIO routines:BIO_new_file:no such file:bss_file.c:182:
140666848540560:error:0B084002:x509 certificate routines:X509_load_cert_crl_file:system lib:by_file.c:258:
CONNECTED(00000003)
-------------------------------------------------------------
Fri Feb 01 03:46:44.870148 2019] [ssl:warn] [pid 47400] [client ,,,.,,,.,,,:34722] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 03:46:44.891653 2019] [ssl:warn] [pid 44290] [client ,,,.,,,.,,,:34730] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 03:46:45.158518 2019] [ssl:warn] [pid 12524] [client ,,,.,,,.,,,:34748] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 03:46:45.174559 2019] [ssl:warn] [pid 47804] [client ,,,.,,,.,,,:34750] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 03:46:46.677107 2019] [ssl:warn] [pid 12524] [client ,,,.,,,.,,,:34788] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 03:46:46.716131 2019] [ssl:warn] [pid 19821] [client ,,,.,,,.,,,:34796] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 07:54:19.972997 2019] [ssl:error] [pid 33400] [client ,,,.,,,.,,,:65305] AH02261: Re-negotiation handshake failed, referer: https://kopas0201.vertexinc.com/content_hosts/155/errata
[Fri Feb 01 07:54:19.977806 2019] [ssl:error] [pid 30926] [client ,,,.,,,.,,,:65306] AH02261: Re-negotiation handshake failed, referer: https://kopas0201.vertexinc.com/content_hosts/155/errata
[Fri Feb 01 07:54:19.982427 2019] [ssl:error] [pid 23758] [client ,,,.,,,.,,,:65307] AH02261: Re-negotiation handshake failed, referer: https://kopas0201.vertexinc.com/content_hosts/155/errata
[Fri Feb 01 07:54:19.986661 2019] [ssl:error] [pid 31095] [client ,,,.,,,.,,,:65297] AH02261: Re-negotiation handshake failed, referer: https://kopas0201.vertexinc.com/content_hosts/155/errata
[Fri Feb 01 07:54:19.994719 2019] [ssl:error] [pid 122416] [client ,,,.,,,.,,,:65304] AH02261: Re-negotiation handshake failed, referer: https://kopas0201.vertexinc.com/content_hosts/155/errata
[Fri Feb 01 07:54:20.002006 2019] [ssl:error] [pid 13001] [client ,,,.,,,.,,,:65303] AH02261: Re-negotiation handshake failed, referer: https://kopas0201.vertexinc.com/content_hosts/155/errata
[Fri Feb 01 07:55:56.242193 2019] [ssl:warn] [pid 31095] [client ,,,.,,,.,,,:59712] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 07:55:56.260013 2019] [ssl:warn] [pid 36448] [client ,,,.,,,.,,,:59714] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 08:30:32.409494 2019] [ssl:warn] [pid 37312] [client ,,,.,,,.,,,:58688] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 08:30:32.425444 2019] [ssl:warn] [pid 13448] [client ,,,.,,,.,,,:58692] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 08:42:25.508795 2019] [ssl:warn] [pid 23758] [client ,,,.,,,.,,,:39720] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 08:42:25.522736 2019] [ssl:warn] [pid 30926] [client ,,,.,,,.,,,:39722] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 08:44:12.168180 2019] [ssl:warn] [pid 60186] [client ,,,.,,,.,,,:41188] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 08:44:12.185239 2019] [ssl:warn] [pid 33400] [client ,,,.,,,.,,,:41190] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 10:11:32.961153 2019] [ssl:warn] [pid 103957] [client ,,,.,,,.,,,:53488] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 10:11:32.974662 2019] [ssl:warn] [pid 104002] [client ,,,.,,,.,,,:53490] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 10:59:08.818209 2019] [ssl:warn] [pid 101682] [client ,,,.,,,.,,,:33818] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
[Fri Feb 01 11:02:51.845809 2019] [ssl:warn] [pid 93778] [client ,,,.,,,.,,,:36772] AH02227: Failed to set r->user to 'SSL_CLIENT_S_DN_CN'
--------------------------------------------------------------------------------------------------------------------
[ 2019-02-01 09:08:26.4282 47862/7f562959c700 Pool2/SmartSpawner.h:298 ]: Preloader for /usr/share/foreman started on PID 72776, listening on unix:/tmp/passenger.1.0.47831/generation-1/backends/preloader.1jrxp66
App 73404 stdout:
App 82172 stdout:
App 82172 stderr: --> No passenger_native_support.so found for current Ruby interpreter.
App 82172 stderr: This library provides various optimized routines that make
App 82172 stderr:
App 82172 stderr: Phusion Passenger faster. Please run 'sudo yum install passenger-devel-4.0.53'
App 82172 stderr: so that Phusion Passenger can compile one on the next run.
App 82172 stderr: --> Continuing without passenger_native_support.so.
App 82172 stderr: /usr/share/foreman/lib/foreman.rb:8: warning: already initialized constant Foreman::UUID_REGEXP
App 82172 stderr: /usr/share/foreman/lib/foreman.rb:8: warning: previous definition of UUID_REGEXP was here
[ 2019-02-01 09:28:16.5174 47862/7f562c944700 Pool2/SmartSpawner.h:298 ]: Preloader for /usr/share/foreman started on PID 82172, listening on unix:/tmp/passenger.1.0.47831/generation-1/backends/preloader.13ep7cn
App 82817 stdout:
App 88310 stdout:
App 88310 stderr: --> No passenger_native_support.so found for current Ruby interpreter.
App 88310 stderr: This library provides various optimized routines that make
App 88310 stderr: Phusion Passenger faster. Please run 'sudo yum install passenger-devel-4.0.53'
App 88310 stderr: so that Phusion Passenger can compile one on the next run.
App 88310 stderr: --> Continuing without passenger_native_support.so.
App 88310 stderr: /usr/share/foreman/lib/foreman.rb:8: warning: already initialized constant Foreman::UUID_REGEXP
App 88310 stderr: /usr/share/foreman/lib/foreman.rb:8: warning: previous definition of UUID_REGEXP was here
[ 2019-02-01 09:40:43.7037 47862/7f56295dd700 Pool2/SmartSpawner.h:298 ]: Preloader for /usr/share/foreman started on PID 88310, listening on unix:/tmp/passenger.1.0.47831/generation-1/backends/preloader.139p84c
App 88931 stdout:
App 103917 stdout:
App 103917 stderr: --> No passenger_native_support.so found for current Ruby interpreter.
App 103917 stderr: This library provides various optimized routines that make
App 103917 stderr:
App 103917 stderr: Phusion Passenger faster. Please run 'sudo yum install passenger-devel-4.0.53'
App 103917 stderr: so that Phusion Passenger can compile one on the next run.
App 103917 stderr: --> Continuing without passenger_native_support.so.
App 103917 stderr: /usr/share/foreman/lib/foreman.rb:8: warning: already initialized constant Foreman::UUID_REGEXP
App 103917 stderr: /usr/share/foreman/lib/foreman.rb:8: warning: previous definition of UUID_REGEXP was here
[ 2019-02-01 10:12:36.4764 47862/7f562c985700 Pool2/SmartSpawner.h:298 ]: Preloader for /usr/share/foreman started on PID 103917, listening on unix:/tmp/passenger.1.0.47831/generation-1/backends/preloader.1sf3huz
App 104632 stdout:
App 125492 stdout:
App 125492 stderr: --> No passenger_native_support.so found for current Ruby interpreter.
App 125492 stderr: This library provides various optimized routines that make
App 125492 stderr: Phusion Passenger faster. Please run 'sudo yum install passenger-devel-4.0.53'
App 125492 stderr: so that Phusion Passenger can compile one on the next run.
App 125492 stderr: --> Continuing without passenger_native_support.so.
App 125492 stderr: /usr/share/foreman/lib/foreman.rb:8: warning: already initialized constant Foreman::UUID_REGEXP
App 125492 stderr: /usr/share/foreman/lib/foreman.rb:8: warning: previous definition of UUID_REGEXP was here
[ 2019-02-01 10:58:14.5756 47862/7f562959c700 Pool2/SmartSpawner.h:298 ]: Preloader for /usr/share/foreman started on PID 125492, listening on unix:/tmp/passenger.1.0.47831/generation-1/backends/preloader.x4bbwm