[Freeipa-users] ipa-getcert shows error
Rob Crittenden
rcritten at redhat.com
Sat Jul 23 19:00:18 UTC 2016
mohammad sereshki wrote:
> hi
>
> I get below error
> ca-error: Error setting up ccache for local "host" service using default
> keytab: Cannot contact any KDC for realm 'EXAMPLE.COM'.
I'm guessing IPA is not running, or not completely running. ipactl
status will tell you.
> when I run ipa-getcert list, also how can I check my CAs are renewed or not?
Use just getcert and not ipa-getcert (ipa-getcert returns just a subset
of all certificates being tracked).
rob
More information about the Freeipa-users
mailing list