[Freeipa-users] goddday wild card cert error
Rob Crittenden
rcritten at redhat.com
Wed Jun 4 13:08:23 UTC 2014
barrykfl at gmail.com wrote:
> Dear all:
>
> my host is abc.def.com <http://abc.def.com>
>
> I import a cert *.def.com <http://def.com> of godaddy to dirsrv and
> warning / error prompt any idea?
> is it i cannot use *.def cert and must use a full host cert .
> abc.def.com? <http://abc.def.com?>??
>
> Shutting down dirsrv:
> PKI-IPA... [ OK ]
> def-COM... [ OK ]
> Starting dirsrv:
> PKI-IPA... [ OK ]
> def-COM...[04/Jun/2014:17:23:28 +0800] - SSL alert:
> CERT_VerifyCertificateNow: verify certificate failed for cert *.def.com
> <http://def.com> - GoDaddy.com, Inc. of family
> cn=RSA,cn=encryption,cn=config (Netscape Portable Runtime error -8172 -
> Peer 's certificate issuer has been marked as not trusted by the user.)
> [ OK ]
> [root@(LIVE)~]$ service ipa status
> Directory Service: RUNNING
> KDC Service: RUNNING
> KPASSWD Service: RUNNING
> MEMCACHE Service: RUNNING
> HTTP Service: RUNNING
> CA Service: RUNNING
https://www.redhat.com/archives/freeipa-users/2014-March/msg00363.html
rob
More information about the Freeipa-users
mailing list