Rob Crittenden wrote:
When a service has a certificate and the CA backend doesn't support revocation (like selfsign) then we simply drop the old certificate in preparation for adding a new one. We weren't setting the usercertificate attribute to None so there was nothing to do in ldap_update().

Added a test case for this situation to ensure that re-issuing a certificate works.

This patch relies on patch 490 to apply.


Freeipa-devel mailing list

Reply via email to