Dear Florence, dear all, thanks for this hint.
I searched/checked further and found somewhere in an old thread on this list with ldapsearch -xLLL -D "cn=Directory Manager" -W -b ou=certificateprofiles,ou=ca,o=ipaca '(&(nsds5ReplConflict=*)(objectclass=ldapsubentry) an entry dn: cn=KDCs_PKINIT_Certs+nsuniqueid=9e022602-2f7911e9-a45ee6ee-1e585ae9,ou=certificateProfiles,ou=ca,o=ipaca after deleting this conflict entry pki-tomcat did start :-) Thanks for all of your help! Regards, Marisa >> > Hi Marisa, > this may be a red herring. Did you try the next steps (comparison of the > uid=pkidbuser,ou=people,o=ipaca usercertificate with the cert stored in > /etc/pki/pki-tomcat/alias)? > > flo -- Dr. Marisa Sandhoff Experimentelle Elementarteilchenphysik Fakultät für Mathematik und Naturwissenschaften Bergische Universitaet Wuppertal Gaussstr. 20 D-42097 Wuppertal, Germany ------- [email protected] [email protected] Raum D.09.03 Phone +49 202 439 3521 _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected]
