puppet - puppet SSL_connect 返回=1 errno=0 状态=错误：证书验证失败

问题描述

我的木偶代理无法连接到在同一台机器上运行的服务器。我正在尝试使用 puppet 5.5.0 版在 raspbian linux 上设置 puppet 客户端服务器

首先，我尝试使用本指南https://puppet.com/docs/puppet/5.3/ssl_regenerate_certificates.html删除和重新生成所有证书在解释了该指南几种不同的方式后，我得到了同样的错误。所以我尝试在不同的机器上设置客户端和服务器，没有任何变化。我尝试添加 --waitforcert=60 以便客户端获得签名证书。我尝试卸载客户端和服务器并删除与 puppet 关联的所有文件并重新安装所有内容

这是我在运行时收到的错误消息puppet agent -t：

Warning: Unable to fetch my node definition, but the agent run will continue:
Warning: SSL_connect returned=1 errno=0 state=error: certificate verify failed (certificate rejected): [ok for /CN=raspberrypi]
Info: Retrieving pluginfacts
Error: /File[/var/cache/puppet/facts.d]: Failed to generate additional resources using 'eval_generate': SSL_connect returned=1 errno=0 state=error: certificate verify failed (certificate rejected): [ok for /CN=raspberrypi]
Error: /File[/var/cache/puppet/facts.d]: Could not evaluate: Could not retrieve file metadata for puppet:///pluginfacts: SSL_connect returned=1 errno=0 state=error: certificate verify failed (certificate rejected): [ok for /CN=raspberrypi]
Info: Retrieving plugin
Error: /File[/var/cache/puppet/lib]: Failed to generate additional resources using 'eval_generate': SSL_connect returned=1 errno=0 state=error: certificate verify failed (certificate rejected): [ok for /CN=raspberrypi]
Error: /File[/var/cache/puppet/lib]: Could not evaluate: Could not retrieve file metadata for puppet:///plugins: SSL_connect returned=1 errno=0 state=error: certificate verify failed (certificate rejected): [ok for /CN=raspberrypi]
Error: Could not retrieve catalog from remote server: SSL_connect returned=1 errno=0 state=error: certificate verify failed (certificate rejected): [ok for /CN=raspberrypi]
Warning: Not using cache on failed catalog
Error: Could not retrieve catalog; skipping run
Error: Could not send report: SSL_connect returned=1 errno=0 state=error: certificate verify failed (certificate rejected): [ok for /CN=raspberrypi]

标签： puppet