Rectifying certificate errors
Every Puppet Agent has its own unique certificate. In Chapter 9, The Puppet Enterprise Console, we learned how to sign a certificate for the web-clone.development.vm node. Certificates are the lifelines for the Puppet agent, which means that, without a working certificate, the Puppet agent can't get any service from the Puppet Master. Certificates do sometimes stop working and this causes problems with deployments. Certificates may stop working, for example, if a node is deleted on the Puppet Master. Let's take a look at certificate errors and how to fix them.
Listing certificates on the Puppet Master
Certificates are stored on the Puppet Master. Certificates can be listed on the command line by running the following command on the Puppet Master node:
# puppet cert list --all
The command outputs a list of certificates that are currently active:
The second certificate from the bottom belongs to the web-clone.development.vm node. Let's delete the certificate on the...
