Günther J. Niederwimmer via FreeIPA-users wrote: > Hello, > > OK now the replica Installation is working :-) > Thanks to Rob Crittenden for help. > > bur the question is now is certbot not compatible with IPA ? > > or can I install afterward certbot with no problems? > > Then this is a Problem with the time, the Browser's don't like private > Certificates less ..............
The ndg-httpsclient package breaks python-requests cert validation (of IPA-issued certs) so it could cause problems with IPA communication with the CA, for example. It isn't something we test with. So if you re-install it there could be other issues. But if you're using LE then I'm not sure why you need the IPA CA at all. Trusting the IPA CA should be automatic for clients that are IPA clients. CA distribution and trust is a challenge in any private PKI environment. rob _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected]
