Forgot to send the version info
$ ipa --version
VERSION: 4.6.6, API_VERSION: 2.231
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
Hi,
I am setting up a 2 node FreeIPA system. One primary and the other is a
replica. I want the replica to use the cloud DNS nameserver as a forwarder. In
Google cloud, 169.254.169.254 is the nameserver. But when this is used as a
forwarder I get the following error,
ipa-replica-install: error
Yes and as part of my troubleshooting I've validated that ipa has:
ca.crl.MasterCRL.enableCRLUpdates=true
ca.crl.MasterCRL.enableCRLCache=true
ca.crl.MasterCRL.enableCRLUpdates=true
The CRL files in /var/lib/ipa/pki-ca/publish/ are being generated - but no
certificates that have been revoked sinc
On 13/01/2021 21.44, TC Johnson via FreeIPA-users wrote:
> Back around Nov/Dec when RHEL 8.3 release, I was hit with the update issue
> regarding fapolicy. Fortunatly only my IPA1 was impacted, though at the time
> it was my CA and CRL master. As part of recovery I migrated CA and CRL to
> IPA2,
Patterson, David via FreeIPA-users wrote:
> Hello,
>
> How or what does it use to compare with?
>
> I see a cert in the nssdb with the correct nickname.
>
> certutil -L -d /etc/pki/nssdb
>
> Certificate Nickname Trust Attributes
>
Patterson, David via FreeIPA-users wrote:
> Hello,
>
> How or what does it use to compare with?
>
> I see a cert in the nssdb with the correct nickname.
>
> certutil -L -d /etc/pki/nssdb
>
> Certificate Nickname Trust Attributes
>
Hi All,
Any next steps in fixing the following issue.
The upgrade has failed as the tomcat CA server appears to be unable to
connect to the ldap server as the connection is refused. Is there any
way to collect more information from from ldap server to ascertain why
the connection has failed.
Is
