On 04/14/2017 03:04 AM, Florence Blanc-Renaud wrote:
Hi Josh,
I did not try this type of setup myself, but I think the issue comes
from missing root certificates. I would try to run
$ ipa-cacert-manage --install
$ ipa-certupdate
on the master. This command will install issuer B certificate
On 04/13/2017 07:50 PM, Josh wrote:
Scenario:
RHEL7 IPA with DNS and without CA. Initial installation was done using
--http-cert-file, --dirsrv-cert-file with certificates from an issuer A.
For a number of reasons replica must be created with certificates from
an issuer B.
A bundle consisting
Scenario:
RHEL7 IPA with DNS and without CA. Initial installation was done using
--http-cert-file, --dirsrv-cert-file with certificates from an issuer A.
For a number of reasons replica must be created with certificates from
an issuer B.
A bundle consisting of key, server certificate and a
