[Pki-users] Some questions about dogtag Replicate

Endi Dewata edewata at redhat.com
Fri Oct 9 18:33:50 UTC 2020 

Hi,

The PKI version that you have is rather old. The latest stable version is
PKI 10.9 and
we are working on PKI 10.10. Is it possible for you to upgrade to the
latest version?

If PKI is used as part of IPA, the profiles and certs will be replicated
automatically.
However, if it's used outside of IPA, the profiles and the certs will need
to be copied
manually to the new replica.

Here's the upstream doc that we have on CA cloning for PKI 10.5:
https://www.dogtagpki.org/wiki/PKI_10.5_Installing_CA_Clone

However, the PKI 10.5 code and doc is no longer maintained upstream. If you
need
to use this particular version on RHEL I'd suggest to check RHEL
documentation or
contact RH support.

Thanks.

-- 
Endi S. Dewata

On Thu, Oct 8, 2020 at 10:41 PM Jose Antonio Mendoza Roa <roa at unixmexico.org>
wrote:

> Hi folks
> I have some doubts
>
> How is the better step for configure replication of dogtag-pki
>
> Im read this manual  and it's very confusing for me .
>
> Now i have running  dogtag-pki-10.5.1-2.el7pki.noarch  in one server1
> (RHEL 7.x)
>
> But i need to replicate   in the other server2 in case of failure this
> server1
>
>
> Im read this manual  https://www.dogtagpki.org/wiki/DS_Replication_Setup
>
>
> -Firs Question  in server1 i have modified  3 profiles in dogtag PKI (how
> to replicate this configuration in the server2)
>
> -Second Question  in server1 i have some certs ssl how to replicate this
> certs to server 2
>
> --
> Ce courrier électronique et les fichiers qui y sont annexés peuvent
> renfermer des
> renseignements privilégiés et confidentiels à l'intention exclusive du
> destinataire. Si
> vous n'êtes pas le destinataire, vous n'êtes pas autorisé(e) à utiliser, à
> copier ou à
> divulguer à un tiers le contenu de ce courrier électronique ni des
> fichiers joints. Si
> vous avez reçu ce courrier électronique par erreur, veuillez en aviser
> l'expéditeur
> immédiatement par courrier électronique et détruire ce message ainsi que
> les fichiers
> en annexe.
>
> This electronic mail message -- and any attachments -- may contain
> privileged/confidential information, intended only for the use of the
> addressee. If you
> are not the addressee, you may not use, copy or disclose to a third party
> the content
> of this message or its attachments. If you have received this message by
> mistake,
> please notify us immediately by e-mail and destroy this message, along
> with all
> attachments
> _______________________________________________
> Pki-users mailing list
> Pki-users at redhat.com
> https://www.redhat.com/mailman/listinfo/pki-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/pki-users/attachments/20201009/cf6e3fec/attachment.htm>

More information about the Pki-users mailing list