Setting up Puppet certificates

Run Puppet agent to generate a certificate for the Puppet Server to sign:

# puppet agent -t

Log into to your Puppet Server, and list the certificates that need approval:

# puppet cert list

It should output a list with your node’s hostname.

Approve the certificate, replacing with your agent's node name:

# puppet cert sign

Back on the Puppet agent node, run the puppet agent again:

# puppet agent -t


Remember that private network DNS is a prerequisite for a successful certificate signing.