[Freeipa-devel] [PATCH] 35 Fix external CA install
Rob Crittenden
rcritten at redhat.com
Wed Jul 27 17:30:36 UTC 2011
Jan Cholasta wrote:
> On 26.7.2011 19:37, Rob Crittenden wrote:
>> Jan Cholasta wrote:
>>> This patch contains several small fixes of external CA install.
>>>
>>> https://fedorahosted.org/freeipa/ticket/1523
>>>
>>
>> This is a good start at simplifying things but needs a bit more work.
>> One thing I was bending over backwards for was to handle whatever
>> options were thrown at us. Here is a situation this does not handle very
>> gracefully:
>>
>> # ipa-server-install --external_cert_file=/home/rcrit/cadb/sub/ipa.crt
>> --external_ca_file=/home/rcrit/cadb/sub/ca.crt --external-ca
>> The following operations may take some minutes to complete.
>> Please wait until the prompt is returned.
>>
>> Configuring ntpd
>> [1/4]: stopping ntpd
>> [2/4]: writing configuration
>> [3/4]: configuring ntpd to start on boot
>> [4/4]: starting ntpd
>> done configuring ntpd.
>> Configuring directory server for the CA: Estimated time 30 seconds
>> [1/3]: creating directory server user
>> [2/3]: creating directory server instance
>> [3/3]: restarting directory server
>> done configuring pkids.
>> CA is not installed yet. To install with an external CA is a two-stage
>> process.
>> First run the installer with --external-ca.
>>
>> rob
>
> Moved the input validation to the beginning of main(), so that the
> errors are caught sooner.
>
> Honza
>
Working great, ack.
pushed to master and ipa-2-0
rob
More information about the Freeipa-devel
mailing list