Got it. thanks. Would it be possible to use for KDS self-signed
certificate, while for dirsrv/http normal certificate signed by public
CA?
пн, 19 июн. 2023 г. в 14:46, Florence Blanc-Renaud :
>
> Hi,
>
>
> On Sun, Jun 18, 2023 at 3:47 AM alexey safonov via FreeIPA-users
> wrote:
>>
>> I'm just
On 6/30/23 12:38, Rob Crittenden wrote:
The CA is stored in the NSS database /etc/pki/pki-tomcat/alias. You can
use pk12util to extract it into a PKCS#12, then extract that and you'll
have the CA. This would keep the CA trust the same but with a fresh
install you'd need new keytabs for any
Ian Pilcher via FreeIPA-users wrote:
> (Hopefully Thunderbird will only send one copy of this. Sorry about the
> previous duplicate.)
>
> I run a single FreeIPA server (on CentOS 7) in my home network, and I'm
> thinking of migrating it to Fedora. AFAICT, doing this as an actual
> upgrade will
(Hopefully Thunderbird will only send one copy of this. Sorry about the
previous duplicate.)
I run a single FreeIPA server (on CentOS 7) in my home network, and I'm
thinking of migrating it to Fedora. AFAICT, doing this as an actual
upgrade will require multiple cycles of creating a newer
Hello FreeIPA-Users mailing list,
Appreciate the hard work put into building FreeIPA. I have a bit of a dilemma.
On three separate isolated identical network environments, I have a cluster of
FreeIPA servers running on CentOS 7 (FreeIPA Server 4.6.8-5). Replication is
broken on all three