When I upgrade Chef (on the clients) from 11.6 to 12.3 the connection to server (Chef 11.6) broken.  :~# chef-client Starting Chef Client, version 12.3.0 Creating a new client identity for test.domain.com using the validator key. [2015-05-07T16:46:17-04:00] ERROR: SSL Validation failure connecting to host: xxxx.domain.com - SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed  ================================================================================ Chef encountered an error attempting to create the client " test.domain.com " ================================================================================  [2015-05-07T16:46:17-04:00] FATAL: Stacktrace dumped to /var/chef/cache/chef-stacktrace.out Chef Client failed. 0 resources updated in 1.306760691 seconds [2015-05-07T16:46:17-04:00] ERROR: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed [2015-05-07T16:46:17-04:00] FATAL: Chef::Exceptions::ChildConvergeError: Chef run process exited unsuccessfully (exit code 1)  This is what I do to fix it:  1.      delete the node / client from Chef WEB Interface 2.      add âssl_verify_mode :verify_peerâ into client.rb (client side) 3.      delete client.pm (client side) 4.      mkdir /etc/chef/trusted_certs/ 5.      :/var/opt/chef-server/nginx/ca# scp server.crt :/etc/chef/trusted_certs/">root@CLIENT:/etc/chef/trusted_certs/ 6.      knife bootstrap CLIENT --sudo -x toor 7.      To check the SSL configuration : knife ssl check -c /etc/chef/client.rb   Any other workaround?  Mohammad |
Archive powered by MHonArc 2.6.16.