[Freeipa-devel] [PATCH] 35 Fix external CA install
Jan Cholasta
jcholast at redhat.com
Wed Jul 27 13:08:20 UTC 2011
On 26.7.2011 19:37, Rob Crittenden wrote:
> Jan Cholasta wrote:
>> This patch contains several small fixes of external CA install.
>>
>> https://fedorahosted.org/freeipa/ticket/1523
>>
>
> This is a good start at simplifying things but needs a bit more work.
> One thing I was bending over backwards for was to handle whatever
> options were thrown at us. Here is a situation this does not handle very
> gracefully:
>
> # ipa-server-install --external_cert_file=/home/rcrit/cadb/sub/ipa.crt
> --external_ca_file=/home/rcrit/cadb/sub/ca.crt --external-ca
> The following operations may take some minutes to complete.
> Please wait until the prompt is returned.
>
> Configuring ntpd
> [1/4]: stopping ntpd
> [2/4]: writing configuration
> [3/4]: configuring ntpd to start on boot
> [4/4]: starting ntpd
> done configuring ntpd.
> Configuring directory server for the CA: Estimated time 30 seconds
> [1/3]: creating directory server user
> [2/3]: creating directory server instance
> [3/3]: restarting directory server
> done configuring pkids.
> CA is not installed yet. To install with an external CA is a two-stage
> process.
> First run the installer with --external-ca.
>
> rob
Moved the input validation to the beginning of main(), so that the
errors are caught sooner.
Honza
--
Jan Cholasta
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-jcholast-35.1-external-ca-fix.patch
Type: text/x-patch
Size: 6420 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20110727/a2a5820f/attachment.bin>
More information about the Freeipa-devel
mailing list