Setup Puppet Certs Autosign

I’d rather not since it is my email address, which I have already sent to you personally.

@Inderpreet

Can you help me, I got this task as failed
image

However as you can see below app server 1 was able to request and I got the autosigned on puppet server

image

We need to do autosign for each agent node. For that, we need to create autosign.conf as below on the puppet master node i.e. on jump_host,

root@jump_host /# vi /etc/puppetlabs/puppet/autosign.conf
jump_host.stratos.xfusioncorp.com
stapp01.stratos.xfusioncorp.com
stapp02.stratos.xfusioncorp.com
stapp03.stratos.xfusioncorp.com

Then, restart a puppet service using a command,

root@jump_host /# systemctl restart puppet

Now edit the hosts files on jump host as well as on all app servers and add an alias as a puppet for a jump host node,

root@jump_host /# vi /etc/hosts
172.16.238.1    jump_host.stratos.xfusioncorp.com puppet
172.16.238.2    jump_host.stratos.xfusioncorp.com puppet

As on App server you can do as below,

[root@stapp01 tony]# cat /etc/hosts
127.0.0.1       localhost
::1     localhost ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff00::0 ip6-mcastprefix
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
172.16.238.3    jump_host.stratos.xfusioncorp.com puppet
172.16.239.5    stapp01.stratos.xfusioncorp.com stapp01
172.16.238.10   stapp01.stratos.xfusioncorp.com stapp01

Finally, run a test on agent nodes respectively and check the ca list --all on puppet master node.

NOTE: This might be corrected after pointing out in here the first time. Thanks all for your feedback and concerns.

3 Likes

My task failed with strange error… @Inderpreet @rahul456 cam you help here?

@ramnamy, sorry for the issue, this is marked pending for you, please give it an another try.