On our clients when attempting to run ipa-certupdate we are seeing the
following error:
ipa.ipapython.ipaldap.SchemaCache: DEBUG: retrieving schema for SchemaCache
url=ldap://ldap2.int.ba.mydomain.local:389
conn=
ipa.ipaclient.ipa_certupdate.CertUpdate: DEBUG: File
"/usr/lib/python2.7/site-packa
We are in the process of switching to using an external CA. We have
successfully gone through he process and indeed the Web UI now shows the
expected certificate chain.
However when we issue certificates to our clients downstream they are using
a signing certificate that was not issued by the new
n Wed, Jul 12, 2017 at 8:23 PM, Jatin Nansi wrote:
> How are you issuing the certs for the clients? Are they signed by the same
> certificate chain that signed the IPA certificate? Did you install the CA
> certificate chain as trusted CA on the clients?
>
> On Thu, Jul 13, 2017 at 2