Hi,
> On 26 Jan 2023, at 13:12, MM MM via FreeIPA-users
> wrote:
>
> Hello Antonio,
>
> ipa getcert-list doesn't show the outdated certificate.
ipa getcert-list displays only a subset of certificates, the ones handled by
IPA CA helper. What is the full output of “getcert list” on the master
Hello Antonio,
ipa getcert-list doesn't show the outdated certificate.
The replica is failing with the following certificates:
- CA Subsystem
- OCSP Subsystem
- CA Audit
Thanks in advance!
Best regards
___
FreeIPA-users mailing list -- freeipa-users@li
Does the outdated certificate show in 'ipa getcert-list'?
What certificate is the replica failing to replicate exactly?
Also it's possible that you will need to travel back in time (stopping
chronyd service and then changing the time to when the certificate was
still valid) and update it then.
On