On Wed, 2013-01-23 at 13:45 -0700, Orion Poplawski wrote:
> On 01/23/2013 01:43 PM, Dmitri Pal wrote:
> > Yes please. Let us do it on the user list.
> > Ticket URL:<https://fedorahosted.org/freeipa/ticket/3360#comment:14>
> So, my goal in using a wildcard cert signed by a "well known" CA was to be
> able to avoid installing the IPA CA in clients like Thunderbird and Firefox.
> Thoughts, comments, suggestions?
Sharing the same cert key between many machines is never a good idea.
Simo Sorce * Red Hat, Inc * New York
Freeipa-users mailing list