000030416 - Error message "Temporary failure in name resolution" while performing a puppet reprovision in RSA Security Analytics

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on May 21, 2017
Version 4Show Document
  • View in full screen mode

Article Content

Article Number000030416
Applies ToRSA Product Set: Security Analytics
RSA Product/Service Type: Log Decoder, Concentrator, Event Stream Analysis (ESA)
RSA Version/Condition: 10.4.x
Platform: CentOS
Platform (Other): Puppet
O/S Version: EL6
IssueWhen performing a puppet re-provision on any of the puppet agents (Decoder, Contentrator, ESA), the following error comes up stating that the certificate request failed due to a failure in name resolution:  Error: Could not request certificate: getaddrinfo: Temporary failure in name resolution
CauseThis issue is caused because the appliance does not have a host entry for "puppetmaster.local" in its /etc/hosts file.
ResolutionTo resolve the issue, follow the steps below.
  1. SSH to the appliance on which the issue is being seen.
  2. Issue the following command: vi /etc/hosts
  3. Add an entry for puppetmaster.local and point it to the SA server IP address, as shown below.
  4. Once added, issue the following command to perform a puppet catalog run:  puppet agent -t --waitforcert 30
If you are unsure of any of the steps above or experience any issues, contact RSA Support and quote this article number for further assistance.
NotesThe issue may also occur when the puppetmaster service is stopped on the RSA Security Analytics server/headunit.
To confirm, SSH into the SA server and check if puppetmaster service is running with the command below.
service puppetmaster status

If stopped, start it with the following command:
service puppetmaster start