IPA 4.2 hit the Centos 7 mirrors a day or two ago.
It looks like the behaviour of the installer has changed somewhat with
regards to the 2 phase --external-ca install
Previously, we ran:
command => "/sbin/ipa-server-install -U -a '${ipa_admin_pwd}' -p
'${ipa_admin_pwd}' --hostname='${::fqdn
On 12/11/15 15:21, Rob Crittenden wrote:
James Masson wrote:
On 30/10/15 13:52, Rob Crittenden wrote:
James Masson wrote:
On 26/10/15 16:11, Martin Kosek wrote:
On 10/26/2015 04:05 PM, James Masson wrote:
On 19/10/15 21:06, Rob Crittenden wrote:
James Masson wrote:
Hi list,
I
On 30/10/15 13:52, Rob Crittenden wrote:
James Masson wrote:
On 26/10/15 16:11, Martin Kosek wrote:
On 10/26/2015 04:05 PM, James Masson wrote:
On 19/10/15 21:06, Rob Crittenden wrote:
James Masson wrote:
Hi list,
I successfully have IPA working with CA certs signed by an upstream
On 26/10/15 16:11, Martin Kosek wrote:
On 10/26/2015 04:05 PM, James Masson wrote:
On 19/10/15 21:06, Rob Crittenden wrote:
James Masson wrote:
Hi list,
I successfully have IPA working with CA certs signed by an upstream Dogtag.
Now I'm trying to use a CA cert signed by a diff
On 19/10/15 21:06, Rob Crittenden wrote:
James Masson wrote:
Hi list,
I successfully have IPA working with CA certs signed by an upstream Dogtag.
Now I'm trying to use a CA cert signed by a different type of CA - Vault.
Setup fails, using the same 2 step IPA setup process as used
Hi list,
I successfully have IPA working with CA certs signed by an upstream Dogtag.
Now I'm trying to use a CA cert signed by a different type of CA - Vault.
Setup fails, using the same 2 step IPA setup process as used with
upstream Dogtag. I've also tried the external-ca-type option.
Like
On 24/09/15 01:20, Fraser Tweedale wrote:
On Wed, Sep 23, 2015 at 11:16:27AM +0100, James Masson wrote:
On 23/09/15 11:03, Fraser Tweedale wrote:
On Wed, Sep 23, 2015 at 09:09:25AM +0200, David Kupka wrote:
On 22/09/15 17:02, James Masson wrote:
Hi,
we're building IPAs in an auto
On 23/09/15 11:03, Fraser Tweedale wrote:
On Wed, Sep 23, 2015 at 09:09:25AM +0200, David Kupka wrote:
On 22/09/15 17:02, James Masson wrote:
Hi,
we're building IPAs in an automated fashion, for environments that get
created and destroyed a lot. At the moment, the CA certs used inside
Hi,
we're building IPAs in an automated fashion, for environments that get
created and destroyed a lot. At the moment, the CA certs used inside
these IPAs are self-signed, as part of the normal "ipa-server-install"
setup process.
We would like to switch to issuing signed intermediate CA cer