Is there a reason that ipa-client-install does not add the CA of the IPA
server to the ca-bundle.crt file in /etc/pki/certs/?

Seems like it would be a reasonable move to do that.

I know it imports the CA into /etc/pki/nssdb.

Hopefully I didn't miss something that allows it to. But I wanted to
check if there was a good reason for it not to before going and filing
an RFE.


Attachment: signature.asc
Description: OpenPGP digital signature

Freeipa-users mailing list

Reply via email to