On 10/13/2014 03:39 PM, quest monger wrote:
I found some documentation for getting certificate signed by external
CA (220.127.116.11. Using Different CA Configurations) -
But looks like those instructions apply to a first time fresh install,
not for upgrading an existing install.
On Mon, Oct 13, 2014 at 3:24 PM, quest monger <quest.mon...@gmail.com
I was told by my admin team that Self-signed certs pose a security
On Mon, Oct 13, 2014 at 3:17 PM, Rob Crittenden
<rcrit...@redhat.com <mailto:rcrit...@redhat.com>> wrote:
quest monger wrote:
> Hello All,
> I installed FreeIPA server on a CentOS host. I have 20+
> Solaris clients hooked up to it. SSH and Sudo works on all
> I would like to replace the self-signed cert that is used on
> and 636.
> Is there a way to do this without re-installing the server
Why do you want to do this?
Do I get it right that you installed IPA using self-signed certificate
and now want to change it?
What version of IPA you have? Did you use self-signed CA-less install or
using self-signed CA?
The tools to change the chaining are only being released in 4.1 so you
might have to move to latest when we release 4.1 for CentOS.
Sr. Engineering Manager IdM portfolio
Red Hat, Inc.
Manage your subscription for the Freeipa-users mailing list:
Go To http://freeipa.org for more info on the project