[Freeipa-users] Recovering from messed-up certs

2014-10-23 Thread Eric McCoy
Hi all, I somehow destroyed my primary IPA server's Server-Cert in /etc/httpd/alias. I don't understand how or why it happened, all I know is that I went to restart Apache and it was gone. Apache won't start, of course, because the cert is missing. I can't issue a new cert on the primary becaus

Re: [Freeipa-users] Recovering from messed-up certs

2014-10-23 Thread Eric McCoy
12:53 PM, Rob Crittenden wrote: > Eric McCoy wrote: > > Hi all, > > > > I somehow destroyed my primary IPA server's Server-Cert in > > /etc/httpd/alias. I don't understand how or why it happened, all I know > > is that I went to restart Apache and it was g

Re: [Freeipa-users] Recovering from messed-up certs

2014-10-28 Thread Eric McCoy
. On Thu, Oct 23, 2014 at 4:05 PM, Rob Crittenden wrote: > Eric McCoy wrote: > > Some nicknames changed to protect the innocent. The > > puppetmaster/hostname cert is nominally unrelated, though its creation > > was contemporaneous with the disappearance of server-cert so I

Re: [Freeipa-users] Recovering from messed-up certs

2014-10-28 Thread Eric McCoy
er?) -- perhaps simply by showing an error message -- I think that would be sufficient. Clearly this is something of a corner case. On Tue, Oct 28, 2014 at 11:27 AM, Rob Crittenden wrote: > Eric McCoy wrote: > > Sorry it took me so long to try this and get back to you. I tried > > mo