Is there a reason that ipa-client-install does not add the CA of the IPA server to the ca-bundle.crt file in /etc/pki/certs/?
Seems like it would be a reasonable move to do that. I know it imports the CA into /etc/pki/nssdb. Hopefully I didn't miss something that allows it to. But I wanted to check if there was a good reason for it not to before going and filing an RFE. -Erinn
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
