Chapter 22. Connecting a Node
No matter if you are using the Puppet master or Puppet Server, at this point you are ready to connect a node to your server. Let’s review this process one step at a time.
Creating a Key Pair
The easiest way to create a key pair for a node is to attempt to connect to a server. The Puppet agent will create the private and public TLS keys, and then submit a certificate signing request (CSR) to the server for authorization.
The default hosts file associates the name puppet.example.com with the puppetserver node. If you are using the deprecated Puppet master, you will need to edit /etc/hosts to look like this:
192.168.250.5puppetmaster.example.compuppet.example.com192.168.250.6puppetserver.example.com
If you are testing the Puppet Server, then you’ll want that name associated with the puppetserver instance’s IP address.
Once you have confirmed that this is correct, attempt a connection to the server using this command:
[vagrant@client~]$puppetagent--test--server=puppet.example.comInfo:CreatinganewSSLkeyforclient.example.comInfo:CachingcertificateforcaInfo:csr_attributesfileloadingfrom/etc/puppetlabs/puppet/csr_attributes.yamlInfo:CreatinganewSSLcertificaterequestforclient.example.comInfo:CertificateRequestfingerprint(SHA256):C3:37:C8:76:CE:3A:D7:81:64:DF:80Info:CachingcertificateforcaExiting;nocertificatefoundandwaitforcertisdisabled
There’s a lot of information here, so let’s review it. The ...
Get Learning Puppet 4 now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
