On Mon, 10 Mar 2014 16:07:54 -0400 Simo wrote: SS> > Unfortunately I've already scrapped that install and just went with SS> > the internal self-signed CA. So far, the only annoyance is that the SS> > webserver also presents a self-signed cert for the UI. Is it safe to SS> > replace just the web cert with a cert signed by my local CA? Or might SS> > that break something? SS> SS> Import the CA cert in your browser.
This is exactly what I'm trying to avoid. Users already have to install our corporate CA cert, and I'd like to avoid having to install two. I'm hoping that the cert for the UI could be swapped for one signed by our existing CA. Robert -- Senior Software Engineer @ Parsons
Description: PGP signature
_______________________________________________ Freeipa-users mailing list Freeipafirstname.lastname@example.org https://www.redhat.com/mailman/listinfo/freeipa-users