安装和客户端证书颁发—puppet系列
本站部分文章、图片属于网络上可搜索到的公开信息,均用于学习和交流用途,不能代表睿象云的观点、立场或意见。我们接受网民的监督,如发现任何违法内容或侵犯了您的权益,请第一时间联系小编邮箱jiasou666@gmail.com 处理。
安装和客户端证书颁发—puppet系列
一、安装
1、安装puppet源,(server端和client端都得要安装)
2、安装puppet
Server:
1 2 | # yum install -y puppet-server # /etc/init.d/puppetmaster start |
Client:
1 2 | # yum install -y puppet # /etc/init.d/puppet start |
安装注意:
也许很多人都会忘记安装puppet源,直接yum
亲们,实践告诉我们不装源,很悲催,会遇到各种问题。
问题一:
Error: Package: ruby-libs-1.8.7.374-1.el5.x86_64 (puppetlabs-deps)
Requires: libtk8.4.so()(64bit)
Error: Package: ruby-libs-1.8.7.374-1.el5.x86_64 (puppetlabs-deps)
Requires: libtcl8.4.so()(64bit)
You could try using --skip-broken to work around the problem
You could try running: rpm -Va --nofiles –nodigest
问题二:
Error: Package: puppet-2.7.20-1.el6.rf.noarch (rpmforge)
Requires: ruby-augeas
You could try using --skip-broken to work around the problem
You could try running: rpm -Va --nofiles –nodigest
二、证书颁发
1、配置主机名
2、client申请证书
[root@vmclient63 ~]# puppetd --server vmserver62 –test
3、server颁发证书
#puppetca -s vmclient63
注意经常会出现颁发证书失败
第一种:[root@vmserver62 ~]# puppetca -s vmclient63
err: Could not call sign: Could not find certificate request for vmclient63
第二种:
[root@vmclient63 ~]# puppetd --server vmserver62 --test
info: Caching certificate for ca
info: Creating a new SSL certificate request for vmclient63
info: Certificate Request fingerprint (md5): 99:32:9E:78:69:55:0D:AD:1A:E5:25:60:FB:95:8A:22
Exiting; no certificate found and waitforcert is disabled
解决办法:
1 2 3 4 5 6 | #puppetca --clean vmclient63(服务端)或者 #puppetca -c -a #/etc/init.d/puppetmaster restart (服务端) #rm -rf /var/lib/puppet (客户端) #/etc/init.d/puppet restart(客户端) # puppetd --server vmserver62 --test (客户端) #puppetca --list ?(服务端) |
相关文章
发表评论
暂时没有评论,来抢沙发吧~