Exiting; no certificate found and waitforcert is disabled – Installing puppet
On puppet Master

puppet cert sign --all
puppet cert clean --all

On the Agent

rm -rf /var/lib/puppet/ssl/*

But still nothing when I tried to generate the SSL cert from PuppetMaster

root@ubuntu1:~# puppet agent --no-daemonize --onetime --verbose
Exiting; no certificate found and waitforcert is disabled

It turns out the client requests the revocation list from the master, you can disable that by setting it’s property to false. You add this line in the puppet.conf file


[root@ip-10-38-18-43 ec2-user]# vi /etc/puppet/puppet.conf
[main]
    logdir = /var/log/puppet
    rundir = /var/run/puppet
    ssldir = /var/lib/puppet/ssl
    certificate_revocation = false

[agent]
    ssldir = $vardir/ssl
    server = ip-10-38-18-93.eu-west-2.compute.internal
    certname = ip-10-38-18-43.eu-west-2.compute.internal
    classfile = $vardir/classes.txt
    localconfig = $vardir/localconfig
    report = true
    graph = true
    pluginsync = true
Then run
On puppet Master

puppet cert sign --all
puppet cert clean --all

On the Agent

rm -rf /var/lib/puppet/ssl/*

Then you can then you can now generate a new cert successfully

[root@ip-10-38-18-43 ec2-user]# puppet agent --no-daemonize --server ip-10-38-18-93.eu-west-2.compute.internal --onetime --verbose
Info: Creating a new SSL key for ip-10-38-18-43.eu-west-2.compute.internal
Info: Caching certificate for ca
Info: csr_attributes file loading from /etc/puppet/csr_attributes.yaml
Info: Creating a new SSL certificate request for ip-10-38-18-43.eu-west-2.compute.internal
Info: Certificate Request fingerprint (SHA256): 4D:0B:82:38:CD:B9:72:14:71:77:BE:31:F7:FD:AA:B1:EE:DA:92:14:71:FA:6F:00:D1:25:4C:76:61:1A:F8:4F
Info: Caching certificate for ip-10-38-18-43.eu-west-2.compute.internal
Info: Caching certificate for ca
Warning: Unable to fetch my node definition, but the agent run will continue:
Warning: Error 400 on SERVER: Failed to find ip-10-38-18-43.eu-west-2.compute.internal via exec: Execution of '/etc/puppetlabs/puppet-dashboard/external_node ip-10-38-18-43.eu-west-2.compute.internal' returned 1:
Info: Retrieving pluginfacts
Info: Retrieving plugin
Error: Could not retrieve catalog from remote server: Error 400 on SERVER: Could not find terminus puppetdb for indirection facts
Notice: Using cached catalog
Error: Could not retrieve catalog; skipping run

And then sign it from the master

root@puppet-razor:~# puppet cert --list