We created the new keys and certificates.
After replacing the files in /var/lib/puppet/ssl/private_keys/server.pem and /var/lib/puppet/ssl/certs/server.pem
The web interface is fine.
However, the node.rb failed with the error:
SSL_connect returned=1 errno=0 state=SSLv3 read server session ticket A: sslv3 alert unsupported certificate
Can anyone help? Thanks.
Please take a look at Foreman :: Manual to make sure you didn’t miss any settings.
had the same issue: the ssl cert needs to support client authentication
Have a look at
m4c3 is right.
Found that when I create the csr, I need to put “extendedKeyUsage = serverAuth, clientAuth” to make node.rb works.