[Spacewalk-list] Custom Certificate Creation - "invalid mode" signing cert
Greg Fuller
gregory.fuller at oswego.edu
Thu Oct 15 18:12:56 UTC 2009
I'm trying to create a custom spacewalk entitlement certificate. We're
trying to get rid of the "Spacewalk Public Cert" being set as the
default organization (which shows up in the main GUI all the time) and
change it to our organization name. From my digging it looks like we
need to create a custom entitlement certificate in order for this to
work. I've following directions at the following 2 sites to try and get
this working:
https://fedorahosted.org/spacewalk/wiki/CertCreation
http://www.cs.rug.nl/~jurjen/ApprenticesNotes/ch11.html#Installing_Space
walk
The 2nd link has more detail on creating the gpg keys for signing.
My spacewalk install (v.6) did not come with the CertUtils.pm library,
so I had to manually download that from the location below and put it in
/usr/lib/perl5/vendor_perl/5.8.8/RHN/
https://fedorahosted.org/spacewalk/browser/web/modules/rhn/RHN/CertUtils
.pm?rev=c43c7764d22ca8a78fd6f446b0892b6dec5e78a8
Now when I run the gen-oss-sat-cert.pl script I get the following
output:
[root at spacewalk-prod-01 ~]# ./gen-oss-sat-cert.pl --dsn user/pass at XE
--signer 6377A8EE --no-passphrase --resign template-eval-20000.cert
Passphrase:
Passphrase:
RHN::Exception: Attempt to set invalid mode
'all_rh_channel_families_insecure' for datasource
'RHN::DataSource::Channel'
RHN::DataSource /usr/lib/perl5/vendor_perl/5.8.8/RHN/DataSource.pm 68
RHN::Exception::throw
RHN::DataSource /usr/lib/perl5/vendor_perl/5.8.8/RHN/DataSource.pm 39
RHN::DataSource::mode
main ./gen-oss-sat-cert.pl 80 RHN::DataSource::new
I've tried removing all of the "channel-families" from the template and
get the same error.
Any ideas??
--greg
Gregory A. Fuller - CCNA
Network Manager
State University of New York at Oswego
Phone: (315) 312-5750
http://www.oswego.edu/~gfuller
More information about the Spacewalk-list
mailing list