[Freeipa-users] [BLOG] Issuing subordinate CA certificates from FreeIPA

Hi all, There was recently discussion about how to issue sub-CA certificates to external entities in FreeIPA (i.e. not lightweight CAs which are internal to an IPA deployment). So I blogged a comprehensive HOWTO, with a discussion of the caveats/limitations.

[Freeipa-users] Re: accessing the api

Sounds good.  My work laptop is an apple and the yeah you are right with the -k however the browsers already trust it.  I have downloaded the ca.crt but its not accepting it in my curl command.   On Monday, August 20, 2018 3:58 PM, Rob Crittenden via FreeIPA-users wrote: Andrew Meyer

[Freeipa-users] Re: accessing the api

Andrew Meyer via FreeIPA-users wrote: > So everything regarding the auth should be ok?  I can use those KRB > variables?  They are irrelevant. They just to where the keytab or ccache are. You can use them or not. > I've seen other sites that say it should be /ipa/session/login_kerberos  > >

[Freeipa-users] Re: accessing the api

So everything regarding the auth should be ok?  I can use those KRB variables?   I've seen other sites that say it should be /ipa/session/login_kerberos  Should I go that route or login_password?  Just making sure. On Monday, August 20, 2018 3:26 PM, Rob Crittenden via FreeIPA-users wrote:

[Freeipa-users] Re: accessing the api

Andrew Meyer via FreeIPA-users wrote: > Hello, > I'm having some difficulty accessing the API.  Following the directions > shown here:   > > Far away to be identical > > > > > > Far away to be identical > > Identity

[Freeipa-users] accessing the api

Hello,I'm having some difficulty accessing the API.  Following the directions shown here:   Far away to be identical | | | Far away to be identical Identity management chaos or a development of a fun | | | I am trying to use the following curl commands:curl -kv -H