On 04/26/2013 09:53 PM, Rob Crittenden wrote:
A dogtag 9 -> 10 upgraded server doesn't provide the RESTful API so
therefore the cert-find command doesn't work. Starting with dogtag
10.0.2 it is going to send back a 501 (HTTP Not implemented) in this
case so we at least have something to catch.

This patch catches a 501 and returns a more specific message.

10.0.2 builds should be available this weekend, or you can pull from
their devel repo at:

name=Dogtag development $releasever - $basearch


With the new Dogtag, /root/.pki/pki-tomcat/ca_admin_cert.p12 is not created. Installation of a new server fails on copying that to /root/ca-agent.p12. Adding Ade to the thread, he should know more.

On my instance upgraded from f17 to f18, I get 404 errors, not 501.

$ rpm -q pki-base
$ ./ipa cert-find
ipa: ERROR: Certificate operation cannot be completed: Unable to communicate with CMS (Not Found)
$ curl -v http://`hostname`:9180/ca/rest/certs/search
< HTTP/1.1 404 Not Found
< Server: Apache-Coyote/1.1
< Content-Type: text/html
< Content-Length: 5723
< Date: Sun, 28 Apr 2013 23:08:44 GMT


Freeipa-devel mailing list

Reply via email to