Thanks for the quick response. It’s version 3.0, as included in CentOS 6.5 EPEL. Yes, I’m running the IPA CA, installed as a self-signed setup. By rekey, I mean generating a new Public/Private key pair for the CA certificate, and then subsequently rekeying all of the certs below. Main reason? Heartbleed.
_______________________________________________ Freeipa-users mailing list Freeipafirstname.lastname@example.org https://www.redhat.com/mailman/listinfo/freeipa-users