[Freeipa-users] Cannot obtain CA Certificate
Jan-Frode Myklebust
janfrode at tanso.net
Tue Feb 19 11:35:02 UTC 2013
> ipa : ERROR Cannot obtain CA certificate
> 'ldap://ipa1.example.com' doesn't have a certificate.
> Installation failed. Rolling back changes.
> IPA client is not configured on this system.
FYI, I have this same issue when enrolling RHEL5 clients. Have been
doing this as a workaround:
wget -O /etc/ipa/ca.crt http://ipa1.example.com/ipa/config/ca.crt
ipa-client-install --no-ntp --mkhomedir --ca-cert-file=/etc/ipa/ca.crt
-jf
More information about the Freeipa-users
mailing list