I'm getting this erorr:
hostname was not match with the server certificate
When I run:
/etc/puppet/node.rb fqdn
I have SSL enabled on my smart-proxy, Foreman is enabled for SSL auth. Any
ideas what this could be?
This suggests the hostname in the URL at the top of node.rb isn't on the
certificate that the Foreman server has configured.
If you used the Foreman installer, you will have
/etc/httpd/conf.d/foreman.conf (or apache2 on Debian) and
SSLCertificateFile inside this. With the certificate path, run:
openssl x509 -in /path/to/certificate.pem -text -noout | egrep
"Subject:|DNS"
Then compare the hostname to the URL used in node.rb, they need to
match. Change node.rb to suit. You'll probably also need to change
foreman.rb (for reporting), which will be under /usr (path dependent on
your OS).
···
On 19/04/13 04:30, Rodrique Heron wrote: > I'm getting this erorr: > > hostname was not match with the server certificate > > When I run: > > /etc/puppet/node.rb fqdn > > I have SSL enabled on my smart-proxy, Foreman is enabled for SSL auth. > Any ideas what this could be?–
Dominic Cleal
Red Hat Engineering
Thanks Dominic.
For RPM installs on RHEL types, ensure the url matches the certificate name
of the foreman server in the following files:
/usr/lib/ruby/site_ruby/1.8/puppet/reports/foreman.rb
/etc/puppet/node.rb
If you are getting errors similart to this:
Error retrieving node shutter01.internal: Net::HTTPForbidden
And /var/log/foreman/production.log have a error like this:
No smart proxy server found on ["puppetmaster.internal"]
Make sure on the foreman server, the smart proxy url is setup to
"puppetmaster.internal"