Client key


#1

What am I doing wrong here?

I launched an open source server. Now I am getting ready to configure my
client workstation with new keys. I pulled the chef-validator.pem from the
server.

Nikhils-MacBook-Pro:.chef nshah$ knife configure --initial

Overwrite /Users/nshah/chef_orchard/chef-repo_prod/.chef/knife.rb? (Y/N) y

Please enter the chef server URL: [https://cdpbh71.theorchard.local:443]
https://nagios01.theorchard.com:443

Please enter a name for the new user: [nshah] nshah

Please enter the existing admin name: [admin] admin

Please enter the location of the existing admin’s private key:
[/etc/chef-server/admin.pem]
/Users/nshah/chef_orchard/chef-repo_prod/.chef/admin.pem

Please enter the validation clientname: [chef-validator]

Please enter the location of the validation key:
[/etc/chef-server/chef-validator.pem]
/Users/nshah/chef_orchard/chef-repo_prod/.chef/chef-validator.pem

Please enter the path to a chef repository (or leave blank):

Creating initial API user…

Please enter a password for the new user:

ERROR: OpenSSL::PKey::RSAError: private key needed.

Nikhils-MacBook-Pro:.chef nshah$ ls -ahl

total 56

drwxr-xr-x 11 nshah staff 374B Nov 13 12:07 .

drwxr-xr-x 16 nshah staff 544B Nov 13 10:33 …

-rwxr-xr-x 1 nshah staff 451B Nov 13 11:11 admin.pem

-rw------- 1 nshah staff 1.6K Nov 13 10:33 admin.pem2

drwxr-xr-x 3 nshah staff 102B Nov 13 10:26 bootstrap

-rw------- 1 nshah staff 1.6K Nov 13 10:35 chef-validator.pem

-rw------- 1 nshah staff 1.6K Nov 13 10:33 chef-validator.pem2

-rw-r–r-- 1 nshah staff 471B Nov 13 12:14 knife.rb

-rw-r–r-- 1 nshah staff 646B Nov 13 11:46 knife.rb2

-rwxr-xr-x 1 nshah staff 451B Nov 13 11:10 nshah.pem

drwxr-xr-x 456 nshah staff 15K Nov 13 10:26 syntax_check_cache

  • Nikhil Shah */ System Administrator

nshah@theorchard.com

The Orchard® / www.theorchard.com

t (+1) 212.308.5648 / f (+1) 212.201.9203
23 E. 4th St., 3rd Fl / New York, NY 10003

The Daily Rind™ / www.dailyrindblog.com http://www.dailyrindblog.com/

Facebook http://www.facebook.com/theorchard /
@orchtweetshttp://www.twitter.com/orchtweets

Privileged And Confidential Communication.

This electronic transmission, and any documents attached hereto, (a) are
protected by the Electronic Communications Privacy Act (18 USC §§
2510-2521), (b) may contain confidential and/or legally privileged
information, and © are for the sole use of the intended recipient named
above. If you have received this electronic message in error, please notify
the sender and delete the electronic message. Any disclosure, copying,
distribution, or use of the contents of the information received in error
is strictly prohibited


#2

Is the admin.pem also the one from the chef server?

Yours
Steffen

On 13/11/13 18:12, Nikhil Shah wrote:

What am I doing wrong here?

I launched an open source server. Now I am getting ready to configure my
client workstation with new keys. I pulled the chef-validator.pem from the
server.

Nikhils-MacBook-Pro:.chef nshah$ knife configure --initial

Overwrite /Users/nshah/chef_orchard/chef-repo_prod/.chef/knife.rb? (Y/N) y

Please enter the chef server URL: [https://cdpbh71.theorchard.local:443]
https://nagios01.theorchard.com:443

Please enter a name for the new user: [nshah] nshah

Please enter the existing admin name: [admin] admin

Please enter the location of the existing admin’s private key:
[/etc/chef-server/admin.pem]
/Users/nshah/chef_orchard/chef-repo_prod/.chef/admin.pem

Please enter the validation clientname: [chef-validator]

Please enter the location of the validation key:
[/etc/chef-server/chef-validator.pem]
/Users/nshah/chef_orchard/chef-repo_prod/.chef/chef-validator.pem

Please enter the path to a chef repository (or leave blank):

Creating initial API user…

Please enter a password for the new user:

ERROR: OpenSSL::PKey::RSAError: private key needed.

Nikhils-MacBook-Pro:.chef nshah$ ls -ahl

total 56

drwxr-xr-x 11 nshah staff 374B Nov 13 12:07 .

drwxr-xr-x 16 nshah staff 544B Nov 13 10:33 …

-rwxr-xr-x 1 nshah staff 451B Nov 13 11:11 admin.pem

-rw------- 1 nshah staff 1.6K Nov 13 10:33 admin.pem2

drwxr-xr-x 3 nshah staff 102B Nov 13 10:26 bootstrap

-rw------- 1 nshah staff 1.6K Nov 13 10:35 chef-validator.pem

-rw------- 1 nshah staff 1.6K Nov 13 10:33 chef-validator.pem2

-rw-r–r-- 1 nshah staff 471B Nov 13 12:14 knife.rb

-rw-r–r-- 1 nshah staff 646B Nov 13 11:46 knife.rb2

-rwxr-xr-x 1 nshah staff 451B Nov 13 11:10 nshah.pem

drwxr-xr-x 456 nshah staff 15K Nov 13 10:26 syntax_check_cache


#3

Got it working. Anyone ever face this issue when uplaoding existing
cookbooks to a new chef server :

cdpbh71:cookbooks nshah$ knife cookbook upload cron

Uploading cron [1.2.6]

ERROR: The data in your request was invalid

Response: Cannot update sandbox 000000000000df67010fd1dc39d584ec: the
following checksums have not been uploaded:
0d0bf28c688fe0d931b7408bf1e7900d, 1501c7d4d78ea731316accb0afb5b19c,
44bcb41c0d259a9e5220dc44299d505f, 6534a3aa337fbfa4cd430a7ab9502090,
683e7fd280fe52a341a517c026570431, 7ce21e8a282e5f93746ceb0e9fe7b0b2,
96dffb159b7932378209dc5025f9d1f2, b78677368e91b9b164bbcc4b59a1ddb7,
db04c5f36b29b958644edb2f6f18ef72, e7bbd4e88475d5ff222efad6445a33c2,
ef014c10ccc6b49e3ec2391571254d1f

On Wed, Nov 13, 2013 at 3:42 PM, Steffen Gebert st+gmane@st-g.de wrote:

Is the admin.pem also the one from the chef server?

Yours
Steffen

On 13/11/13 18:12, Nikhil Shah wrote:

What am I doing wrong here?

I launched an open source server. Now I am getting ready to configure my
client workstation with new keys. I pulled the chef-validator.pem from
the
server.

Nikhils-MacBook-Pro:.chef nshah$ knife configure --initial

Overwrite /Users/nshah/chef_orchard/chef-repo_prod/.chef/knife.rb? (Y/N)
y

Please enter the chef server URL: [https://cdpbh71.theorchard.local:443]
https://nagios01.theorchard.com:443

Please enter a name for the new user: [nshah] nshah

Please enter the existing admin name: [admin] admin

Please enter the location of the existing admin’s private key:
[/etc/chef-server/admin.pem]
/Users/nshah/chef_orchard/chef-repo_prod/.chef/admin.pem

Please enter the validation clientname: [chef-validator]

Please enter the location of the validation key:
[/etc/chef-server/chef-validator.pem]
/Users/nshah/chef_orchard/chef-repo_prod/.chef/chef-validator.pem

Please enter the path to a chef repository (or leave blank):

Creating initial API user…

Please enter a password for the new user:

ERROR: OpenSSL::PKey::RSAError: private key needed.

Nikhils-MacBook-Pro:.chef nshah$ ls -ahl

total 56

drwxr-xr-x 11 nshah staff 374B Nov 13 12:07 .

drwxr-xr-x 16 nshah staff 544B Nov 13 10:33 …

-rwxr-xr-x 1 nshah staff 451B Nov 13 11:11 admin.pem

-rw------- 1 nshah staff 1.6K Nov 13 10:33 admin.pem2

drwxr-xr-x 3 nshah staff 102B Nov 13 10:26 bootstrap

-rw------- 1 nshah staff 1.6K Nov 13 10:35 chef-validator.pem

-rw------- 1 nshah staff 1.6K Nov 13 10:33 chef-validator.pem2

-rw-r–r-- 1 nshah staff 471B Nov 13 12:14 knife.rb

-rw-r–r-- 1 nshah staff 646B Nov 13 11:46 knife.rb2

-rwxr-xr-x 1 nshah staff 451B Nov 13 11:10 nshah.pem

drwxr-xr-x 456 nshah staff 15K Nov 13 10:26 syntax_check_cache

  • Nikhil Shah */ System Administrator

nshah@theorchard.com

The Orchard® / www.theorchard.com

t (+1) 212.308.5648 / f (+1) 212.201.9203
23 E. 4th St., 3rd Fl / New York, NY 10003

The Daily Rind™ / www.dailyrindblog.com http://www.dailyrindblog.com/

Facebook http://www.facebook.com/theorchard /
@orchtweetshttp://www.twitter.com/orchtweets

Privileged And Confidential Communication.

This electronic transmission, and any documents attached hereto, (a) are
protected by the Electronic Communications Privacy Act (18 USC §§
2510-2521), (b) may contain confidential and/or legally privileged
information, and © are for the sole use of the intended recipient named
above. If you have received this electronic message in error, please notify
the sender and delete the electronic message. Any disclosure, copying,
distribution, or use of the contents of the information received in error
is strictly prohibited