This blog post looks at the final part of creating secure software: shipping it to users in a safe way. It explains how to use transport security and package signatures to achieve this goal.

Agent nodes can’t retrieve their configurations
    Is the Puppet master reachable from the agents?
    Do your agents have signed certificates?
    Do agents trust the master’s certificate?
    Can agents reach the filebucket server?

Some common issues that can prevent the different parts of Puppet Enterprise from communicating with each other.