[Freeipa-users] Re: Third Party SSL for HTTP and Certmonger SSL for LDAP

2018-04-05 Thread Alka Murali via FreeIPA-users
Hi Rob, > Often people make backups of the databases. Have you looked to see if > they exist? >Given you have no RA agent cert (ipaCert) IPA has no way to talk to your >existing dogtag CA. I'd start with a hunt for backups. There may be a >way to force dogtag to generate a new on, I'd cc'd one

[Freeipa-users] Re: Third Party SSL for HTTP and Certmonger SSL for LDAP

2018-04-05 Thread Rob Crittenden via FreeIPA-users
Alka Murali wrote: > Hi Rob, > > I can see that the certs with nickname 'Server-Cert' doesn't exist on my > server for HTTP/LDAP. Hence, I believe, it is not possible apply the > changes to the des.ldif and nss configuration. Often people make backups of the databases. Have you looked to see if

[Freeipa-users] Re: Third Party SSL for HTTP and Certmonger SSL for LDAP

2018-04-05 Thread Alka Murali via FreeIPA-users
Hi Rob, I can see that the certs with nickname 'Server-Cert' doesn't exist on my server for HTTP/LDAP. Hence, I believe, it is not possible apply the changes to the des.ldif and nss configuration. Is it possible for me to install the certs, by generating the Dogtag certs using the steps in the

[Freeipa-users] Re: Third Party SSL for HTTP and Certmonger SSL for LDAP

2018-04-04 Thread Rob Crittenden via FreeIPA-users
Alka Murali wrote: > Hi Rob, > > I am planning to revert my existing third party SSL certs for HTTP and > LDAP Services back to CertMonger cert. Is there any way to revert the > certs back to CertMonger certs. Are you sure the certs exist and are valid? There is no automated way to do it.

[Freeipa-users] Re: Third Party SSL for HTTP and Certmonger SSL for LDAP

2018-04-03 Thread Alka Murali via FreeIPA-users
Hi Rob, I am planning to revert my existing third party SSL certs for HTTP and LDAP Services back to CertMonger cert. Is there any way to revert the certs back to CertMonger certs. Awaiting your response. On Tue, Apr 3, 2018 at 9:56 AM, Alka Murali wrote: > Hi Rob, >

[Freeipa-users] Re: Third Party SSL for HTTP and Certmonger SSL for LDAP

2018-04-02 Thread Alka Murali via FreeIPA-users
Hi Rob, Thanks for your reply. >> Sure. We'd need to know what version of IPA you have. My FreeIPA Server is running on Version 4.4 Here is the result of the command "getcert list -d /etc/dirsrv/slapd-YOUR-REALM -n Server-Cert" for my FreeIPA Server: - Number of certificates and requests

[Freeipa-users] Re: Third Party SSL for HTTP and Certmonger SSL for LDAP

2018-04-02 Thread Rob Crittenden via FreeIPA-users
Alka Murali via FreeIPA-users wrote: > Hello Team, > > Right now, I am using third party SSL for both HTTP and LDAP services. > However I would like to know if there is any way to use third party SSL > for HTTP alone and certmonger SSL for LDAP services. Sure. We'd need to know what version of

[Freeipa-users] Re: Third Party SSL for HTTP and Certmonger SSL for LDAP

2018-04-01 Thread Alka Murali via FreeIPA-users
Hello Team, Right now, I am using third party SSL for both HTTP and LDAP services. However I would like to know if there is any way to use third party SSL for HTTP alone and certmonger SSL for LDAP services. -- Regards, Alka Murali ___ FreeIPA-users