<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
Hi,<br>
<br>
is it possible that ipa-server-certinstall couldnt handle private
keys without password ?<br>
<br>
i would test it with a self-signed certificate and test private key
file secured with password, but i dont know whats happen after
entering a valid private key unlock password. Could i stop the
certificate import process at this point, so no change will happen
to my productive ipa server ?<br>
<br>
regards,<br>
Andreas<br>
<blockquote cite="mid:d4072b96-2096-b36c-46a9-039ace6f3607@kit.edu"
type="cite">
<pre wrap="">Hi,
i try to replace the self signed certificate from the ipa installation
with this description:
<a class="moz-txt-link-freetext" href="http://www.freeipa.org/page/Using_3rd_part_certificates_for_HTTP/LDAP">http://www.freeipa.org/page/Using_3rd_part_certificates_for_HTTP/LDAP</a>
ipa-server-certinstall -w -d mysite.key mysite.crt
The tool ask for the private key unlock passwort. The private key was
generated without passwort. I tried out to press only the enter key, but
it doesnt help. So iam confused. The certificate and keyfile are in PEM
format.
For testing I converted the private key with:
openssl rsa -in -out
because i want to know if openssl ask me for a password, but it doesnt.
My version number is FreeIPA 4.1.
regards,
Andreas
</pre>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
</blockquote>
<br>
</body>
</html>