Also adding SSSD here, would be easy enough to make its default PAM CA
ring to point to /etc/ssl/certs/ca-certificates.crt by default (and
change-able in settings) but not sure if we want to go this route as it
may make SSSD documentation confusing (as it everywhere mentions
/etc/sssd/pki/sssd_auth_ca_db.pem or /etc/sssd/pki/sssd_auth_ca_db.pem).
Maybe a nice way would be to provide a default sssd.conf file that
explicitly set that instead of hard-coding it, so we won't break current
installations.
** Also affects: sssd (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1647285
Title:
SSL trust not system-wide
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ca-certificates/+bug/1647285/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
