rob, I finally found out what’s wrong: The local files for crt and key already existed during my tests. Obviously they are not being overwritten when stopping monitoring an old request for the certificate and requesting a new one. In result the post-save-command is not triggered. When I delete at least the certificate, everything works as expected.
I think that’s odd behavior. Is that on purpose? What about an expiry situation: Will the files be overwritten when the certificate is close to expiry? How can I test the expiry situation? Is it possible to request a certificate with very limited validity by using client arguments only? Or will I need to edit the server ca profile? Thanks for your great help! Cheers, Philipp ----------------------------- CONET Solutions GmbH, Theodor-Heuss-Allee 19, 53773 Hennef. Geschäftsführer/Managing Director: Dirk Lieder Registergericht/Registration Court: Amtsgericht Siegburg (HRB Nr. 9136) ----------------------------- Datenschutzhinweise: https://www.conet.de/DE/conet/datenschutz Diese E-Mail und etwa anhängende Dateien enthalten vertrauliche Informationen und sind ausschließlich für den Adressaten bestimmt. Sollten Sie diese E-Mail irrtümlich erhalten haben, informieren Sie uns hierüber bitte unter pre...@conet.de und löschen Sie diese E-Mail einschließlich etwa angehängter Dateien aus Ihrem System. Bitte beachten Sie, dass die Weitergabe, Kopie und sonstige unautorisierte Nutzung der E-Mail und etwa angehängter Dateien verboten sind. Vielen Dank. This e-mail and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this e-mail in error please notify pre...@conet.de and delete this e-mail including attachments from your system. Please note that any unauthorized review, copying, disclosing or other use whatsoever are prohibited. Thank you. _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
