Hello team, >From my reading, it is possible to migrate IPA from a self signed root CA to an external signed one, after the migration, I know:
1. all IPA clients should "ipa-certupdate" to get the new CA I do not know: 1. what will happen to the SSL certificates issued with the old self signed root CA? 2. what will happen to the subCA issued with the old self signed root CA? Could someone share the answers? Thanks. Kathy.
-- _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
