[Freeipa-users] Renewal of new cert concept
barrykfl at gmail.com
barrykfl at gmail.com
Thu May 19 08:35:35 UTC 2016
Hi:
As stated in the guidline online.../root/ipa.crt is the server cert
generated by 3rd patry CA ? or the CA cert itself that need to pair with
server cert later. thx
Give the CSR to your external CA and have them issue you a new certificate.
We assume that the resulting certificate is saved into the /root/ipa.crt
file. We also assume that the /root/external-ca.pem file contains the
external CA certificate chain in the PEM format. The renewal needs to be
done on the IdM CA designated for managing renewals. One way to identify
the first-installed IdM server is to see if the value for subsystem.select
is New:
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Identity_Management_Guide/cas.html
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20160519/d86c3536/attachment.htm>
More information about the Freeipa-users
mailing list