[Freeipa-users] Expired Certs
Rob Crittenden
rcritten at redhat.com
Fri Apr 10 21:46:52 UTC 2015
John Williams wrote:
> I've inhereted an IPA infrastructure for a group in my organization. So
> I've got a RHEL instance with a IPA 3.0.0 server with expired certs.
>
> [root at ipa ~]# rpm -qa | grep ipa-server
> ipa-server-selinux-3.0.0-26.el6_4.2.x86_64
> ipa-server-3.0.0-26.el6_4.2.x86_64
> [root at ipa ~]#
>
>
> [root at ipa ~]# getcert list
[ snip ]
>
> [root at ipa ~]# date
> Thu Apr 10 00:13:51 EDT 2014
> [root at ipa ~]# /etc/init.d/certmonger restart
> Stopping certmonger: [ OK ]
> Starting certmonger: [ OK ]
> [root at ipa ~]#
You are going way to far back in time AFAICT. The certs expired on April
5 of this year so you don't need to go back to 2014. Just go back to
April 3 or 4.
You'll also need to restart IPA before kicking certmonger ipactl restart
rob
More information about the Freeipa-users
mailing list