On Mon, 10 Mar 2014 16:07:54 -0400 Simo wrote:
SS> > Unfortunately I've already scrapped that install and just went with
SS> > the internal self-signed CA. So far, the only annoyance is that the
SS> > webserver also presents a self-signed cert for the UI.  Is it safe to
SS> > replace just the web cert with a cert signed by my local CA? Or might
SS> > that break something?
SS> Import the CA cert in your browser.

This is exactly what I'm trying to avoid. Users already have to install our
corporate CA cert, and I'd like to avoid having to install two. I'm hoping
that the cert for the UI could be swapped for one signed by our existing CA.


Senior Software Engineer @ Parsons

Attachment: signature.asc
Description: PGP signature

Freeipa-users mailing list

Reply via email to