Bob Strachan via FreeIPA-users wrote:
> Rob and Jochen,
>
> Thank you both for your speedy reply.
>
> My IDM system seems to be working fine. I can issue certs. My concern is
> with the two CS.cfg files, as I have no idea what they are for. I don't
> know if the csr blobs in CS.cfg are
Rob and Jochen,
Thank you both for your speedy reply.
My IDM system seems to be working fine. I can issue certs. My concern is with
the two CS.cfg files, as I have no idea what they are for. I don't know if
the csr blobs in CS.cfg are necessary or if they need to be in sync with the
Bob Strachan via FreeIPA-users wrote:
> I wonder I if have gotten myself in a bind.
>
> I have a small realm of a dozen Rhel7 and Rhel8 servers, a few dozen users
> and three IDM servers. We moved from yellow pages to IDM for 2FA a couple of
> years ago. The original IDM servers were all
Bob Strachan via FreeIPA-users
writes:
> At some point and I believe it was when we got to Rhel8.6 we started
> getting hc errors with this type of message:
> "msg": "Certificate 'subsystemCert cert-pki-ca' does not match the
> value of kra.subsystem.cert in
>