[Freeipa-devel] FYI: Cert for https://www.freeipa.org/ is invalid
Martin Kosek
mkosek at redhat.com
Tue Jul 22 09:01:03 UTC 2014
On 06/26/2014 10:39 AM, Martin Kosek wrote:
> On 06/26/2014 07:28 AM, James wrote:
>> I think it's kind of funny that the cert for: https://www.freeipa.org/
>> is invalid, particularly since this is a security product.
>>
>> In any case, feel free to forward to whoever maintains this in case
>> someone thinks it matters.
>>
>> Cheers,
>> James
>
> You are of course right. Given that OpenShift (where the wiki is running) now
> supports certificates for aliases, it is possible to configure the certificate.
>
> I have started the machinery, stay tuned.
>
> Thanks,
> Martin
To update this thread, note that https://www.freeipa.org is now secured with a
valid certificate.
https://freeipa.org is NOT secured with a valid certificate as this is routed
via external server which redirects all requests to "www.freeipa.org".
This is required as OpenShift application node A/AAAA records can change and we
need to always point to the CNAME (wiki-freeipaorg.rhcloud.com). Given that DNS
zone record (freeipa.org) cannot contain CNAME record, we are stuck with this
external redirector. Long story short, this one will take more time to solve.
Martin
More information about the Freeipa-devel
mailing list