On Fri, Mar 08, 2019 at 09:41:25AM +0100, Ronald Wimmer via FreeIPA-users wrote: > Today I was reading the documentation on > https://www.freeipa.org/page/Using_3rd_part_certificates_for_HTTP/LDAP > > Is the Prerequisite step necessary if the CA (Digicert) is already trusted > by the OS? > I believe it is necessary. Components of the FreeIPA infrastructure do not necessarily use the system trust store. They only communicate with other parts of the FreeIPA system so trust is restricted to what is necesary.
Cheers, Fraser > Regards, > Ronald > _______________________________________________ > FreeIPA-users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/[email protected] _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected]
