无法从库存服务中检索事实:SSL_connect 返回=1 errno=0 state=SSLv3 [英] Could not retrieve facts from inventory service: SSL_connect returned=1 errno=0 state=SSLv3
问题描述
我可以在 puppet Enterprise Console 中看到以下错误::
I can see following error in puppet Enterprise Console::
无法从库存服务中检索事实:SSL_connect 返回=1 errno=0 state=SSLv3 读取服务器会话票证 A:sslv3 警报证书已撤销
我也遵循以下步骤::
Also I followed following steps::
我在 Windows puppet Enterprise 客户端上运行了 puppet agent -t.
I ran puppet agent -t on Windows puppet Enterprise client.
我运行了 puppet cert list 并从 master 签署了客户端证书.
I ran puppet cert list and sign client certificate from master.
我再次运行了 puppet agent -t,但在控制台上出现以下错误::
Again I ran puppet agent -t but I am getting following error on console ::
Warning: Unable to fetch my node definition, but the agent run will continue: Warning: SSLconnect returned=1 errno=0 state=SSLv3 read server certificate B: 证书验证失败: [certificate revoked for/CN=learn.localdomain] 信息:检索插件错误:/File[C:/ProgramData/PuppetLabs/puppet/var/lib]:无法使用evalgenerate"生成附加资源:SSLconnect 返回=1 errno=0 state=SSLv 3读取服务器证书 B:证书验证失败:[为/CN=learn.localdomain 撤销证书] 错误:/File[C:/ProgramData/PuppetLabs/puppet/var/lib]:无法评估:SSL 连接返回=1 errno=0 state=SSLv3 读取服务器证书 B:证书验证失败:[为/CN=learn.localdomain 吊销了证书] 无法检索 puppet://learn.localdomain/plugins 的文件元数据:SSLconnect 返回=1 err no=0 状态=SSLv3 读取服务器证书 B:证书验证失败:[为/CN=learn.localdomain 撤销证书] 信息:在 C:/Prog 中加载事实ramData/PuppetLabs/puppet/var/lib/facter/concatba sedir.rb 信息:在 C:/ProgramData/PuppetLabs/puppet/var/lib/facter/customau thconf.rb 中加载事实信息:在 C:/ProgramData/中加载事实PuppetLabs/puppet/var/lib/facter/facterdo td.rb 信息:在 C:/ProgramData/PuppetLabs/puppet/var/lib/facter/ip6tables version.rb 中加载事实信息:在 C:/ProgramData/PuppetLabs/中加载事实puppet/var/lib/facter/iptables persistentversion.rb 信息:在 C:/ProgramData/PuppetLabs/puppet/var/lib/facter/iptables version.rb 中加载事实.rb 信息:在 C:/ProgramData/PuppetLabs/puppet/中加载事实var/lib/facter/peversio n.rb 信息:在 C:/ProgramData/PuppetLabs/puppet/var/lib/facter/postgres defaultversion.rb 中加载事实信息:在 C:/ProgramData/PuppetLabs/puppet/var/中加载事实lib/facter/puppetdb serverstatus.rb 信息:在 C:/ProgramData/PuppetLabs/puppet/var/lib/facter/puppetva rdir.rb 中加载事实信息:在 C:/ProgramData/PuppetLabs/puppet/var/lib/中加载事实facter/roothome .rb 信息:在 C:/Prog 中加载事实ramData/PuppetLabs/puppet/var/lib/facter/windows.rb 错误:无法从远程服务器检索目录:SSLconnect 返回=1 err no=0 state=SSLv3 读取服务器证书 B:证书验证失败:[证书被撤销/CN=learn.localdomain] 警告:未在失败的目录上使用缓存错误:无法检索目录;跳过运行错误:无法发送报告:SSL_connect 返回=1 errno=0 state=SSLv3 读取服务器证书B:证书验证失败:[为/CN=lear n.localdomain 撤销证书]
be
推荐答案
我猜你的证书没有很好地从 master 中删除.
I guess that your certificate is not well removed from the master.
要清理客户端证书,您需要运行以下命令:
To clean the clients certificate, you need to run the following commands:
- 在主服务器上:
puppet cert -c
- 在客户端上:
rm -rf/var/lib/puppet/ssl
(假设您的 ssl 证书在此位置)
- On the master:
puppet cert -c <hostname>
- On the clients:
rm -rf /var/lib/puppet/ssl
(assuming that your ssl certificate are in this location)
来源:http://inuits.eu/blog/puppet-sslv3-alert-certificate-revoked
希望这会有所帮助.
这篇关于无法从库存服务中检索事实:SSL_connect 返回=1 errno=0 state=SSLv3的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!