[Freeipa-users] FreeIPA 3.3.* bug with external-ca?
Andrea Bontempi
abontempi at dbmsrl.com
Fri Nov 8 14:55:57 UTC 2013
> /usr/share/pki/ca/profiles/ca/caServerCert.cfg exist?
Yes
> Does rpm -V pki-ca pass?
No response
> Can openssl x509 -text -in /path/to/ca.crt show the cert ok?
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1383914316 (0x527cdb4c)
Signature Algorithm: sha1WithRSAEncryption
Issuer: CN=DBM
Validity
Not Before: Nov 8 12:38:37 2013 GMT
Not After : Feb 16 12:38:38 2014 GMT
Subject: O=DBMSRL.COM, CN=Certificate Authority
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:d9:4b... [omissis]
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Alternative Name:
email:dbm at dbmsrl.com
X509v3 Extended Key Usage:
Code Signing, OCSP Signing, Time Stamping
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Subject Key Identifier:
2D:21:C5:07... [omissis]
X509v3 Authority Key Identifier:
keyid:2A:B7... [omissis]
More information about the Freeipa-users
mailing list