Fedora User Certificates

Dennis Gilmore dennis at ausil.us
Fri Aug 22 15:20:03 UTC 2008

Effective immediately we have replaced the CA that is in use for 
cvs.fedoraproject.org and koji.fedoraproject.org  This effects uploading to 
lookaside cache and building packages.

There are some manual steps that everyone needs to do to be able to use the 
systems again.

they are 
login to https://admin.fedoraproject.org/accounts/  and click on the "Download 
a client-side certificate" link at the bottom of the home page.  save the 
output to ~/.fedora.cert

rm ~/.fedora-server-ca.cert ~/.fedora-upload-ca.cert

then open your browser got to Edit -> Preferences -> Advanced -> Encryption -> 
View Certificates -> Your Certificates 

Select your existing Certificate and remove it  
then import the new one from ~/fedora-browser-cert.p12  you will be able to 
log in to koji

* Please note that you can only have one client side certificate at a time.  
when you download a new one your old one is revoked.  Please also only click 
on the "Download a client-side certificate" link once as it makes multiple 
requests and revokes all the transient certs.

the CRL is at https://admin.fedoraproject.org/ca/crl.pem  

Thanks for your understanding and patience.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part.
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20080822/4110b92c/attachment.sig>
-------------- next part --------------
Fedora-devel-announce mailing list
Fedora-devel-announce at redhat.com

More information about the fedora-devel-list mailing list