[Freeipa-devel] Failed replica installation (v2)
Martin Nagy
mnagy at redhat.com
Wed Jul 1 13:08:27 UTC 2009
On Wed, 01 Jul 2009 08:33:36 -0400, Rob Crittenden
<rcritten at redhat.com> wrote:
> Martin Nagy wrote:
> > I'm trying to install a replica, but the installation script fails
> > when trying to restart the 389 server:
> >
> > 2009-07-01 04:11:59,777 INFO [01/Jul/2009:04:11:49 -0400] - SSL
> > alert: CERT_VerifyCertificateNow: verify certificate failed for cert
> > Server-Cert of family cn=RSA,cn=encryption,cn=config (Netscape
> > Portable Runtime error -8179 - Peer's Certificate issuer is not
> > recognized.) [01/Jul/2009:04:11:49 -0400] - SSL failure: None of
> > the cipher are valid
> >
> > Is this somehow my fault or is this a bug?
>
> That would be a bug. It would seem that the CA is not being imported
> into DS either because it wasn't put into the replica file or some
> other bug.
Submitted as bug# 509111. Is there a workaround? BTW, I can
see a ca.crt inside the replica info file.
Martin
More information about the Freeipa-devel
mailing list