On Wed, 2013-01-23 at 13:45 -0700, Orion Poplawski wrote:
> On 01/23/2013 01:43 PM, Dmitri Pal wrote:
> > Yes please. Let us do it on the user list.
> >
> > Ticket URL:<https://fedorahosted.org/freeipa/ticket/3360#comment:14>
> So, my goal in using a wildcard cert signed by a "well known" CA was to be 
> able to avoid installing the IPA CA in clients like Thunderbird and Firefox. 
> Thoughts, comments, suggestions?

Sharing the same cert key between many machines is never a good idea.


Simo Sorce * Red Hat, Inc * New York

Freeipa-users mailing list

Reply via email to