On 06/18/2013 02:28 AM, Dmitri Pal wrote:
> On 06/14/2013 11:59 AM, Erinn Looney-Triggs wrote:
>> So my CA certificate in IPA is a subordinate certificate of an AD CS
>> instance. These certificates by default are only valid for two years,
>> and mine will be up come this December.
>>
>> So, I am l
Lukáš Bezdička wrote:
We were playing with rotating CA for FreeIPA as an DR procedure. I
wouldn't use this how to unless completely necessary as it will mean
many manual tasks on your infrastructure. But to know how it could be done:
This approach can work. It should be considered a last resort
We were playing with rotating CA for FreeIPA as an DR procedure. I wouldn't
use this how to unless completely necessary as it will mean many manual
tasks on your infrastructure. But to know how it could be done:
1) ipa backup:
/var/lib/dirsrv/scripts-KOKOTINA/db2bak.pl -v -D "cn=directory manager
On 06/14/2013 11:59 AM, Erinn Looney-Triggs wrote:
> So my CA certificate in IPA is a subordinate certificate of an AD CS
> instance. These certificates by default are only valid for two years,
> and mine will be up come this December.
>
> So, I am looking for a way to replace this certificate in I
So my CA certificate in IPA is a subordinate certificate of an AD CS
instance. These certificates by default are only valid for two years,
and mine will be up come this December.
So, I am looking for a way to replace this certificate in IPA.
Any thoughts?
-Erinn
signature.asc
Description: Ope