Information Technology Reference
In-Depth Information
"config"
: {
"ssl_verify_mode"
:
":verify_peer"
,
"ssl_ca_file"
:
"/chef-repo/.chef/trusted_certs/default-centos65_vagrantup_com.crt"
}
}
}
Double-check to make sure the settings for
chef_client.config.ssl_verify_mode
and
chef_client.config.ssl_ca_file
are correct by checking them with
knife node show
--attribute
as follows. Make sure these settings match exactly, and the
/chef-repo/
.chef/trusted_certs/default-centos65_vagrantup_com.crt
is synced to your node
before going further:
$
knife node show --attribute "chef_client.config.ssl_verify_mode" \
node-centos65.vagrantup.com
node-centos65.vagrantup.com:
chef_client.config.ssl_verify_mode: :verify_peer
$
knife node show --attribute "chef_client.config.ssl_ca_file" \
node-centos65.vagrantup.com
node-centos65.vagrantup.com:
chef_client.config.ssl_ca_file: /chef-repo/.chef/trusted_certs/
default-centos65_vagrantup_com.crt
$
kitchen login
Last login: Sat Aug 16 10:29:58 2014 from 10.0.2.2
Welcome to your Packer-built virtual machine.
[vagrant@node-centos65 ~]$
ls /chef-repo/.chef/trusted_certs
default-centos65_vagrantup_com.crt
[vagrant@node-centos65 ~]$
exit
logout
Connection to 127.0.0.1 closed.
Once you have verified all the settings are correct, add the
chef-client::config
recipe to
your node's run list:
$
knife node run_list add node-centos65.vagrantup.com \
"recipe[chef-client::config]"
node-centos65.vagrantup.com:
run_list:
recipe[chef-client::delete_validation]