[Freeipa-users] 3rd party certificate for WebUI only
Rob Crittenden
rcritten at redhat.com
Thu Jul 2 01:33:34 UTC 2015
Stephen Ingram wrote:
> I setup IPA using the internal CA. I'd like to continue using this CA,
> however, I'd also like to allow authorized external browser users (who
> haven't imported our CA) to access the WebUI without receiving a
> warning. Is it possible to add a 3rd party certificate and CA such that
> it is only used for the WebUI using the instructions at
> http://www.freeipa.org/page/Using_3rd_part_certificates_for_HTTP/LDAP?
>
> Steve
>
>
In a word: yes.
I'd recommend making a backup of /etc/httpd/alias and
/etc/httpd/conf.d/nss.conf before doing this to make rolling back, if
necessary, easier.
rob
More information about the Freeipa-users
mailing list