puppetdb: unable to get local issuer certificate..

27 April 2015

Today I updated puppet and installed puppetdb. After the installation I tried to connect my puppetmaster with the puppetdb. As soon as I made a “puppet agent -t” I recieved this error:

Error: Could not retrieve catalog from remote server: Error 400 on SERVER: Failed to submit 'replace facts' command for to PuppetDB at SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed: [unable to get local issuer certificate for /]
Warning: Not using cache on failed catalog
Error: Could not retrieve catalog; skipping run

So I fixed it by generating a new certificate:

mv /etc/puppetdb/ssl /etc/puppetdb/ssl.bak
puppetdb-ssl-setup -f
/etc/init.d/puppetdb restart
[ Linux  Sysadmin  Puppet  ]
Except where otherwise noted, content on this site is licensed under a Creative Commons Attribution 3.0 Unported License.

Copyright 2015-present Hoti