[Freeipa-users] /var/log/dirsrv/slapd-*/acces: SSL peer cannot verify your certificate
Bjarne Blichfeldt
BJB at jndata.dk
Tue Apr 26 13:59:29 UTC 2016
Ipa server: rhel7.2, ipa ping ="IPA server version 4.2.0. API version 2.156"
In order to use ldap through load balancer, I added an alternative dns name to ipa server certificate.
ipa-getcert resubmit -i <id> -D newname.differentdomaine.net
It all seemed well, the extra name was entered into the certificate, expiration day 2018-04-27 12:20:55 UTC.
and I can access ldaps through the load balancer.
But in /var/log/dirsrv/slapd-*/acces I see a lot of "SSL peer cannot verify your certificate" and cert operations
are gone:
idm1:~$ ipa cert-find
ipa: ERROR: Certificate operation cannot be completed: Unable to communicate with CMS (Internal Server Error)
Anybody have an idea of what I missed?
Venlig hilsen
Bjarne Blichfeldt
Infrastructure Services
Direkte +4563636119
Mobile +4521593270
BJB at jndata.dk
[cid:image002.png at 01D19FD4.9D73F340]
JN Data A/S
*
Havsteensvej 4
*
4000 Roskilde
Telefon 63 63 63 63/ Fax 63 63 63 64
www.jndata.dk
[cid:image004.png at 01D19FD4.9D73F340]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20160426/de30228c/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.png
Type: image/png
Size: 410 bytes
Desc: image002.png
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20160426/de30228c/attachment.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image004.png
Type: image/png
Size: 5487 bytes
Desc: image004.png
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20160426/de30228c/attachment-0001.png>
More information about the Freeipa-users
mailing list