It would create CSR for you on install. On Wed, Oct 31, 2018 at 1:22 PM Henrik Johansson via FreeIPA-users < [email protected]> wrote:
> Hello, > > I am looking at using FreeIPA without CA, using external signed > certificates, reading the documentations it looks possible using > —dirsrv-certfile, —http-cert-file and —point-certfile. Should I just create > a CSR for the hostname by by hand and get it signed? Also is there any good > reason for having different certs for http, ldap and pkinit? Can I just use > one certificate for all services and for all servers and replicas using > Subject Alternative Names? > > Regards > Henrik > _______________________________________________ > FreeIPA-users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/[email protected] > -- With best regards, Andrey Bondarenkomail:[email protected]https://andreybondarenko.com skype:andrey.bondarenko phone, Telegram, WhatsApp, etc:+420-773-591-443 7758 40AC 88CC 96C9 0C9A 9EE4 3B72 547B 7538 D41B
_______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected]
