Chef PEM file invalid or mis-named?

chef-infra knife
DirtyMikeAndTheBoys picture DirtyMikeAndTheBoys · Aug 21, 2014 · Viewed 12.3k times · Source

My sytem username is myuser but I'm trying to bootstrap machines with a chef-validator.pem and then a blah.pem file, and getting the following error message:

ERROR: Failed to authenticate to https://mychef01 as blah with key
/etc/chef/blah.pem.
Response: Invalid signature for user or client 'blah'

Does this mean that the blah.pem file is invalid, or does it mean that it needs to match my system username (so, myuser.pem)? Either way, what is the root problem and what is the fix?

Answer

ICas picture ICas · Apr 13, 2016

From the Administration tab in chef name-validator.pem is generated from Organization level, while name.pem is generated from the User level. You may not have generated the user level pem yet.

Related questions

Which special characters need escaping in a solr query?

Update: I think this question has to do with solr syntax in general, and not Chef in particular. So while I ran into this working with Chef, I presume that anyone working with Solr will also experience this... I'm working …

Read More
Private key could not be loaded when I run "knife client list"

Configuration file written to /home/ubuntu/sudo /home/ubuntu/chef-repo/.chef/knife.rb ubuntu@mychefclient:~$ knife client list WARNING: No knife configuration file found ERROR: Your private key could not be loaded from /etc/chef/client.pem Check your configuration …

Read More
Chef clients and validators

I'm trying to understand the concept of Chef clients and validators, and their relationship to the bootstrapping process. According to this article, the chef-client will use the /etc/chef/validation.pem private key to authenticate itself for the initial run, …

Read More