[Freeipa-users] want to make new replicas but cert expire
Rob Crittenden
rcritten at redhat.com
Wed May 18 18:01:40 UTC 2016
barrykfl at gmail.com wrote:
> Hi:
>
> I type ipa-replica-install server --ip 192.168.1.3
>
> it show my cert expire n....where location I should input the cert ?
>
> trusted by the user.)
> preparation of replica failed: cannot connect to
> 'https://ipa.cora.nwra.com:9444/ca/ee/ca/profileSubmitSSLClient': [Errno
> -8172] (SEC_ERROR_UNTRUSTED_ISSUER) Peer's certificate issuer has been
> marked
You need to sort out your expired certs before you can create a new master.
Why not just renew the GoDaddy certs?
rob
More information about the Freeipa-users
mailing list