Re: [Freeipa-users] TLS: hostname does not match CN in peer certificate
On Thu, Jun 23, 2011 at 02:15:37PM +0200, Pieter Baele wrote: > Probably, this question is been asked before > > I try to register an IPA client but get the following error. > (primary kerberos are AD hosts, so I use --server etc) > > What can be wrong? The necessary firewall ports are opened > > ipa-client-install --server testclient03 --domain example.org > > root: ERRORLDAP Error: Connect error: TLS: hostname does > not match CN in peer certificate > Failed to verify that testclient03 is an IPA Server. > This may mean that the remote server is not up or is not reachabl Please try to use the FQDN of testclient03. HTH bye, Sumit > > Greetings PieterB > > ___ > Freeipa-users mailing list > Freeipa-users@redhat.com > https://www.redhat.com/mailman/listinfo/freeipa-users ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
Re: [Freeipa-users] TLS: hostname does not match CN in peer certificate
Solved. --server also needs FQDN I've to think twice before posting ;-) ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
[Freeipa-users] TLS: hostname does not match CN in peer certificate
Probably, this question is been asked before I try to register an IPA client but get the following error. (primary kerberos are AD hosts, so I use --server etc) What can be wrong? The necessary firewall ports are opened ipa-client-install --server testclient03 --domain example.org root: ERRORLDAP Error: Connect error: TLS: hostname does not match CN in peer certificate Failed to verify that testclient03 is an IPA Server. This may mean that the remote server is not up or is not reachabl Greetings PieterB ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users