July Release Confetti
150+ New Courses, Hands‑On Labs, And
Interactive Learning Activities
Learn More

Puppet agent issues

After signing my nodes cert, whenever I run puppet agent -t I get the following output:


Info: Caching certificate for electricaltears5.mylabserver.com
Info: Caching certificate for electricaltears5.mylabserver.com
Warning: Unable to fetch my node definition, but the agent run will continue:
Warning: Error 403 on SERVER: Forbidden request: ec2-54-210-121-73.compute-1.amazonaws.com(54.210.121.73) access to /node/ElectricalTears5.mylabserver.com [find] at :60
Info: Retrieving plugin
Error: /File[/var/opt/lib/pe-puppet/lib]: Failed to generate additional resources using 'eval_generate': Error 403 on SERVER: Forbidden request: ec2-54-210-121-73.compute-1.amazonaws.com(54.210.121.73) access to /file_metadata/plugins [search] at :60
Error: /File[/var/opt/lib/pe-puppet/lib]: Could not evaluate: Could not retrieve file metadata for puppet://electricaltears4.mylabserver.com/plugins: Error 403 on SERVER: Forbidden request: ec2-54-210-121-73.compute-1.amazonaws.com(54.210.121.73) access to /file_metadata/plugins [find] at :60
Wrapped exception:
Error 403 on SERVER: Forbidden request: ec2-54-210-121-73.compute-1.amazonaws.com(54.210.121.73) access to /file_metadata/plugins [find] at :60
Error: Could not retrieve catalog from remote server: Error 403 on SERVER: Forbidden request: ec2-54-210-121-73.compute-1.amazonaws.com(54.210.121.73) access to /catalog/ElectricalTears5.mylabserver.com [find] at :60
Warning: Not using cache on failed catalog
Error: Could not retrieve catalog; skipping run
Error: Could not send report: Error 403 on SERVER: Forbidden request: ec2-54-210-121-73.compute-1.amazonaws.com(54.210.121.73) access to /report/ElectricalTears5.mylabserver.com [save] at :60


This only happens with the version supplied by the puppet master image provided. I've installed the PE-server on centos 7 as well as a node, and that worked fine. Not sure what I'm doing wrong here.


History from master:
249 vi /etc/hosts # add fqdn to hosts file
250 vi /etc/ssh/sshd_config # allow root login
251 puppet-enterprise/puppet-enterprise-installer
252 hostname
253 puppet cert list
254 puppet cert sign electricaltears5.mylabserver.com

History from node
193 vi /etc/ssh/sshd_config
194 curl -k https://electricaltears4.mylabserver.com:8140/packages/current/install.bash | sudo bash
195 puppet agent -t
  • post-author-pic
    Severino D
    09-17-2015

    Hi

    i'm getting the exact same output, we're you able to get that fixed with the course provided setup?


    [root@RinoD2 ~]# puppet agent -t
    Warning: Unable to fetch my node definition, but the agent run will continue:
    Warning: Error 403 on SERVER: Forbidden request: 172.31.116.30(172.31.116.30) access to /node/RinoD2.mylabserver.com [find] at :60
    Info: Retrieving plugin
    Error: /File[/var/opt/lib/pe-puppet/lib]: Failed to generate additional resources using 'eval_generate': Error 403 on SERVER: Forbidden request: 172.31.116.30(172.31.116.30) access to /file_metadata/plugins [search] at :60
    Error: /File[/var/opt/lib/pe-puppet/lib]: Could not evaluate: Could not retrieve file metadata for puppet://rinod1.mylabserver.com/plugins: Error 403 on SERVER: Forbidden request: 172.31.116.30(172.31.116.30) access to /file_metadata/plugins [find] at :60
    Wrapped exception:
    Error 403 on SERVER: Forbidden request: 172.31.116.30(172.31.116.30) access to /file_metadata/plugins [find] at :60
    Error: Could not retrieve catalog from remote server: Error 403 on SERVER: Forbidden request: 172.31.116.30(172.31.116.30) access to /catalog/RinoD2.mylabserver.com [find] at :60
    Warning: Not using cache on failed catalog
    Error: Could not retrieve catalog; skipping run
    Error: Could not send report: Error 403 on SERVER: Forbidden request: 172.31.116.30(172.31.116.30) access to /report/RinoD2.mylabserver.com [save] at :60
    [root@RinoD2 ~]#

  • post-author-pic
    Severino D
    09-17-2015

    Hi

    Fixed it in my case

    1- logon to your puppet node
    2- backup your original puppet.conf file;
    # cp -p puppet.conf puppet.conf.orig.2015090700
    3- vi /etc/puppetlabs/puppet/puppet.conf , look for the certname
    mine was set to capital letters and i replaced to lowercase
    so from certname = RinoD2.mylabserver.com
    to certname = rinod2.mylabserver.com


    [root@RinoD2 puppet]# diff puppet.conf puppet.conf.orig.2015090700
    18c18
    < certname = rinod2.mylabserver.com
    ---
    > certname = RinoD2.mylabserver.com
    [root@RinoD2 puppet]#

    Then rerun the test;
    [root@RinoD2 puppet]#
    [root@RinoD2 puppet]#
    [root@RinoD2 puppet]# puppet agent -t
    Info: Caching certificate_revocation_list for ca
    Info: Retrieving plugin
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter]/ensure: created
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/concat_basedir.rb]/ensure: defined content as '{md5}e152593fafe27ef305fc473929c62ca6'
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/custom_auth_conf.rb]/ensure: defined content as '{md5}744ec302a6e4f748d27057bed275968d'
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/facter_dot_d.rb]/ensure: defined content as '{md5}926b2c2e886a43c615d7663029d43595'
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/ip6tables_version.rb]/ensure: defined content as '{md5}091123ad703f1706686bca4398c5b06f'
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/iptables_persistent_version.rb]/ensure: defined content as '{md5}b7a47827cd3d3bb1acbd526a31da3acb'
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/iptables_version.rb]/ensure: defined content as '{md5}facbd760223f236538b731c1d1f6cf8f'
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/pe_build.rb]/ensure: defined content as '{md5}f2a752162694029797947d0f88a50def'
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/pe_postgres_default_version.rb]/ensure: defined content as '{md5}aae853c81530758e96ba8cbcf0b097cc'
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/pe_puppetdb_server_status.rb]/ensure: defined content as '{md5}9994d5a38cd9a27c16943026b3ea321a'
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/pe_version.rb]/ensure: defined content as '{md5}4a9353952963b011759f3e6652a10da5'
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/platform_tag.rb]/ensure: defined content as '{md5}ba0af12f6068589e99afce76072d8bf6'
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/postgres_default_version.rb]/ensure: defined content as '{md5}53c88744595fa06f0ce7f08211a46ae2'
    Notice: /File[/var/opt/lib/pe-puppet/lib/facter/p ....
    ...
    ...
    ...
    Info: Loading facts in /var/opt/lib/pe-puppet/lib/facter/puppet_vardir.rb
    Info: Loading facts in /var/opt/lib/pe-puppet/lib/facter/custom_auth_conf.rb
    Info: Loading facts in /var/opt/lib/pe-puppet/lib/facter/concat_basedir.rb
    Info: Loading facts in /var/opt/lib/pe-puppet/lib/facter/pe_build.rb
    Info: Loading facts in /var/opt/lib/pe-puppet/lib/facter/staging_http_get.rb
    Info: Loading facts in /var/opt/lib/pe-puppet/lib/facter/root_home.rb
    Info: Loading facts in /var/opt/lib/pe-puppet/lib/facter/facter_dot_d.rb
    Info: Loading facts in /var/opt/lib/pe-puppet/lib/facter/postgres_default_version.rb
    Info: Loading facts in /var/opt/lib/pe-puppet/lib/facter/iptables_version.rb
    Info: Loading facts in /var/opt/lib/pe-puppet/lib/facter/platform_tag.rb
    Info: Loading facts in /var/opt/lib/pe-puppet/lib/facter/iptables_persistent_version.rb
    Info: Loading facts in /var/opt/lib/pe-puppet/lib/facter/pe_puppetdb_server_status.rb
    Info: Caching catalog for rinod2.mylabserver.com
    Info: Applying configuration version '1442514488'
    Notice: Finished catalog run in 0.09 seconds
    [root@RinoD2 puppet]#
    [root@RinoD2 puppet]#
    [root@RinoD2 puppet]#


    Hope it helped.
    Rino

Looking For Team Training?

Learn More