Nodes do not have permissions to bootstrap other nodes on ec2

Hi,

I am very serious issue with chef an bootstrapping a node from a
monitoring server. The monitoring server was bootstrapped as well.
In the hosted hosted web UI I have gave permissions to the monitoring
node for everything yet I get the below error. This node will handle
failover.

I get the below error when bootstrapping.

ec2-23-20-69-202.compute-1.amazonaws.com 15 gems installed
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:11+00:00]
INFO: *** Chef 0.10.8 ***
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
INFO: Client key /etc/chef/client.pem is not present - registering
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
INFO: HTTP Request Returned 401 Unauthorized: Failed to authenticate
as validation. Ensure that your node_name and client key are correct.
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
FATAL: Stacktrace dumped to /var/chef/cache/chef-stacktrace.out
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
FATAL: Net::HTTPServerException: 401 “Unauthorized”

Here is my knife file.

log_level :info
log_location STDOUT
node_name "dev_gl"
client_key "/etc/chef/client.pem"
validation_client_name "validation"
validation_key "/etc/chef/validation.pem"
chef_server_url "https://api.opscode.com/organizations/testorg"
cache_type 'BasicFile’
cache_options( :path => “/home/ubuntu/.chef/checksums” )
cookbook_path [ “/home/ubuntu/workspace/MyCHEF/chef-repo/cookbooks” ]
knife[:aws_access_key_id] = "xxxxxx"
knife[:aws_secret_access_key] = “xxxxxxxxxxxx”

The node has ALL permissions checked. What else is there to do?

Thanks

What's the node name of the instance you are bootstrapping? Does that client ( node name) already exist on your chef server?

'knife client show your.node.name'

John

Sent from Motorola StarTac
"Keeping it Klassy"

On Jun 9, 2012, at 10:30 AM, David Montgomery davidmontgomery@gmail.com wrote:

Hi,

I am very serious issue with chef an bootstrapping a node from a
monitoring server. The monitoring server was bootstrapped as well.
In the hosted hosted web UI I have gave permissions to the monitoring
node for everything yet I get the below error. This node will handle
failover.

I get the below error when bootstrapping.

ec2-23-20-69-202.compute-1.amazonaws.com 15 gems installed
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:11+00:00]
INFO: *** Chef 0.10.8 ***
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
INFO: Client key /etc/chef/client.pem is not present - registering
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
INFO: HTTP Request Returned 401 Unauthorized: Failed to authenticate
as validation. Ensure that your node_name and client key are correct.
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
FATAL: Stacktrace dumped to /var/chef/cache/chef-stacktrace.out
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
FATAL: Net::HTTPServerException: 401 "Unauthorized"

Here is my knife file.

log_level :info
log_location STDOUT
node_name "dev_gl"
client_key "/etc/chef/client.pem"
validation_client_name "validation"
validation_key "/etc/chef/validation.pem"
chef_server_url "Sign In - Chef Manage"
cache_type 'BasicFile'
cache_options( :path => "/home/ubuntu/.chef/checksums" )
cookbook_path [ "/home/ubuntu/workspace/MyCHEF/chef-repo/cookbooks" ]
knife[:aws_access_key_id] = "xxxxxx"
knife[:aws_secret_access_key] = "xxxxxxxxxxxx"

The node has ALL permissions checked. What else is there to do?

Thanks

This is what I get.

root@li441-243:/home/ubuntu/.chef# knife client show dev_gl
admin: false
chef_type: client
json_class: Chef::ApiClient
name: dev_gl
public_key:

On Sat, Jun 9, 2012 at 11:03 PM, John Dyer johntdyer@gmail.com wrote:

What's the node name of the instance you are bootstrapping? Does that client ( node name) already exist on your chef server?

'knife client show your.node.name'

John

Sent from Motorola StarTac
"Keeping it Klassy"

On Jun 9, 2012, at 10:30 AM, David Montgomery davidmontgomery@gmail.com wrote:

Hi,

I am very serious issue with chef an bootstrapping a node from a
monitoring server. The monitoring server was bootstrapped as well.
In the hosted hosted web UI I have gave permissions to the monitoring
node for everything yet I get the below error. This node will handle
failover.

I get the below error when bootstrapping.

ec2-23-20-69-202.compute-1.amazonaws.com 15 gems installed
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:11+00:00]
INFO: *** Chef 0.10.8 ***
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
INFO: Client key /etc/chef/client.pem is not present - registering
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
INFO: HTTP Request Returned 401 Unauthorized: Failed to authenticate
as validation. Ensure that your node_name and client key are correct.
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
FATAL: Stacktrace dumped to /var/chef/cache/chef-stacktrace.out
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
FATAL: Net::HTTPServerException: 401 "Unauthorized"

Here is my knife file.

log_level :info
log_location STDOUT
node_name "dev_gl"
client_key "/etc/chef/client.pem"
validation_client_name "validation"
validation_key "/etc/chef/validation.pem"
chef_server_url "Sign In - Chef Manage"
cache_type 'BasicFile'
cache_options( :path => "/home/ubuntu/.chef/checksums" )
cookbook_path [ "/home/ubuntu/workspace/MyCHEF/chef-repo/cookbooks" ]
knife[:aws_access_key_id] = "xxxxxx"
knife[:aws_secret_access_key] = "xxxxxxxxxxxx"

The node has ALL permissions checked. What else is there to do?

Thanks

Not anywhere that I can double check but I think that's saying there is a client registered already with that name. Node names need to be unique. Can u remove the client an try again? Knife client delete nodeNAme . Then try again

John

Sent from Motorola StarTac
"Keeping it Klassy"

On Jun 9, 2012, at 11:14 AM, David Montgomery davidmontgomery@gmail.com wrote:

This is what I get.

root@li441-243:/home/ubuntu/.chef# knife client show dev_gl
admin: false
chef_type: client
json_class: Chef::ApiClient
name: dev_gl
public_key:

On Sat, Jun 9, 2012 at 11:03 PM, John Dyer johntdyer@gmail.com wrote:

What's the node name of the instance you are bootstrapping? Does that client ( node name) already exist on your chef server?

'knife client show your.node.name'

John

Sent from Motorola StarTac
"Keeping it Klassy"

On Jun 9, 2012, at 10:30 AM, David Montgomery davidmontgomery@gmail.com wrote:

Hi,

I am very serious issue with chef an bootstrapping a node from a
monitoring server. The monitoring server was bootstrapped as well.
In the hosted hosted web UI I have gave permissions to the monitoring
node for everything yet I get the below error. This node will handle
failover.

I get the below error when bootstrapping.

ec2-23-20-69-202.compute-1.amazonaws.com 15 gems installed
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:11+00:00]
INFO: *** Chef 0.10.8 ***
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
INFO: Client key /etc/chef/client.pem is not present - registering
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
INFO: HTTP Request Returned 401 Unauthorized: Failed to authenticate
as validation. Ensure that your node_name and client key are correct.
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
FATAL: Stacktrace dumped to /var/chef/cache/chef-stacktrace.out
ec2-23-20-69-202.compute-1.amazonaws.com [2012-06-09T14:21:12+00:00]
FATAL: Net::HTTPServerException: 401 "Unauthorized"

Here is my knife file.

log_level :info
log_location STDOUT
node_name "dev_gl"
client_key "/etc/chef/client.pem"
validation_client_name "validation"
validation_key "/etc/chef/validation.pem"
chef_server_url "https://api.opscode.com/organizations/testorg"
cache_type 'BasicFile'
cache_options( :path => "/home/ubuntu/.chef/checksums" )
cookbook_path [ "/home/ubuntu/workspace/MyCHEF/chef-repo/cookbooks" ]
knife[:aws_access_key_id] = "xxxxxx"
knife[:aws_secret_access_key] = "xxxxxxxxxxxx"

The node has ALL permissions checked. What else is there to do?

Thanks