I have two IdM/FreeIPA instances running in a test lab environment, built with self-signed certs and CA. Both have CA installed. I want to replace the self-signed with a real, external CA as it will be in production.
Would I use this: https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/linux_domain_identity_authentication_and_policy_guide/ca-less-to-ca Red Hat Enterprise Linux 7 : Linux Domain Identity, Authentication, and Policy Guide - 26.8. Installing a CA Into an Existing IdM Domain or this: https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/linux_domain_identity_authentication_and_policy_guide/cert-renewal#manual-cert-renewal-ext Red Hat Enterprise Linux 7 : Linux Domain Identity, Authentication, and Policy Guide - 26.2.2.2. Renewing an Externally-Signed IdM CA Certificate Manually This use-case is not clearly documented (if at all) ______________________________________________________________________________________________ Daniel E. White [email protected]<mailto:[email protected]> NICS Linux Engineer NASA Goddard Space Flight Center 8800 Greenbelt Road Building 14, Room E175 Greenbelt, MD 20771 Office: (301) 286-6919 Mobile: (240) 513-5290
_______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected]
