When doing configuration of CA using pkispawn in interactive mode, a warning message appears
subsystem (CA/KRA/OCSP/TKS/TPS) [CA]:
Tomcat: Instance [pki-tomcat]: HTTP port [8080]: Secure HTTP port [8443]: AJP port [8009]: Management port [8005]:
Administrator: Username [caadmin]: Password: Verify password: Import certificate (Yes/No) [N]? Export certificate to [/root/.dogtag/pki-tomcat/ca_admin.cert]: Directory Server: Hostname [vm-idm-004.lab.eng.pnq.redhat.com]: Use a secure LDAPS connection (Yes/No/Quit) [N]? LDAP Port [389]: Bind DN [cn=Directory Manager]: Password: Base DN [o=pki-tomcat-CA]:
Security Domain: Name [lab.eng.pnq.redhat.com Security Domain]:
Begin installation (Yes/No/Quit)? Yes
Log file: /var/log/pki/pki-ca-spawn.20150730155656.log Installing CA into /var/lib/pki/pki-tomcat. Storing deployment configuration into /etc/sysconfig/pki/tomcat/pki-tomcat/ca/deployment.cfg. /usr/lib/python2.7/site-packages/urllib3/connectionpool.py:769: InsecureRequestWarning: Unverified HTTPS request is being made. Adding certificate verification is strongly advised. See: https://urllib3.readthedocs.org/en/latest/security.html InsecureRequestWarning) Notice: Trust flag u is set automatically if the private key is present. ln -s '/usr/lib/systemd/system/pki-tomcatd.target' '/etc/systemd/system/multi-user.target.wants/pki-tomcatd.target'
========================================================================== INSTALLATION SUMMARY ========================================================================== Administrator's username: caadmin Administrator's PKCS #12 file: /root/.dogtag/pki-tomcat/ca_admin_cert.p12 To check the status of the subsystem: systemctl status pki-tomcatd@pki-tomcat.service To restart the subsystem: systemctl restart pki-tomcatd@pki-tomcat.service The URL for the subsystem is: https://vm-idm-004.lab.eng.pnq.redhat.com:8443/ca PKI instances will be enabled upon system boot ==========================================================================
Steps to Reproduce:
1. get a rhel7.1 system with system updated to latest packages from RHN 2. Install pki-ca 3. Run pkispawn
Actual results:
CA configuration happens successfully but a warning message appears when pkispawn exits
Expected results:
No warning message should appear.
Per CS/DS Meeting of 08/03/2015: Marked as duplicate of PKI TRAC Ticket #1253 - InsecureRequestWarning with python-urllib3-1.10.
Metadata Update from @mrniranjan: - Issue set to the milestone: 10.3.0
Dogtag PKI is moving from Pagure issues to GitHub issues. This means that existing or new issues will be reported and tracked through Dogtag PKI's GitHub Issue tracker.
This issue has been cloned to GitHub and is available here: https://github.com/dogtagpki/pki/issues/2096
If you want to receive further updates on the issue, please navigate to the GitHub issue and click on Subscribe button.
Subscribe
Thank you for understanding, and we apologize for any inconvenience.
Login to comment on this ticket.