我正在尝试从我的厨师工作站运行一本食谱,我收到了这个错误
Starting first Chef Client run...
Starting first Chef Client run...
[2015-05-22T21:00:45+05:30] WARN:
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
SSL validation of HTTPS requests is disabled. HTTPS connections are still
encrypted, but chef is not able to detect forged replies or man in the middle
attacks.
To fix this issue add an entry like this to your configuration file:
``
# Verify all HTTPS connections (recommended)
ssl_verify_mode :verify_peer
# OR, Verify only connections to chef-server
verify_api_cert true
To check your SSL configuration, or troubleshoot errors, you can use the^M
`knife ssl check` command like so:
knife ssl check -c /etc/chef/client.rb
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
Starting Chef Client, version 11.18.6
ERROR: Connection refused connecting to https://localhost/nodes/nodename, retry 2/5
ERROR: Connection refused connecting to https://localhost/nodes/nodename, retry 3/5
ERROR: Connection refused connecting to https://localhost/nodes/nodename, retry 4/5
] ERROR: Connection refused connecting to https://localhost/nodes/nodename, retry 5/5
当我卷曲时
curl https://localhost/nodes/nodename
我得到了
curl: (35) error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol
但是
knife ssl check -c /etc/chef/client.rb
我的服务器状态成功
我在我的工作站knife.rb文件中添加了ssl_verify_mode:verify_peerto,然后问题也一样请帮我解决这个问题
答案 0 :(得分:0)
尝试在厨师客户端上运行ssl fetch命令:
knife ssl fetch -c /etc/chef/client.rb
来源: