On 1.7.2016 10:42, Christian Heimes wrote:
> RedHatCAService.wait_until_running() uses dogtag.ca_status() to make a
> HTTP(s) request to Dogtag in order to check if /ca/admin/ca/getStatus
> returns OK. The ca_status() function defaults to api.env.ca_host as
> On a replica without CA ca_host is a remote host (e.g. master's
> FQDN). ipa-ca-install waits for master:8080 instead of replica:8080,
> which might be blocked by a firewall.
Interesting. How it happens that replica without CA is calling RedHatCAService?
Also, why replica should be waiting for CA if it is not installed?
Manage your subscription for the Freeipa-devel mailing list:
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code