freeipa

Clone
Source Code
GIT

f346372 Don't renew non-IPA issued certs in ipa-cert-fix

1 file Authored by rcritten 3 years ago, Committed by frenaud 3 years ago,
raw patch tree parent
1 file changed. 43 lines added. 10 lines removed.
ipaserver/install/ipa_cert_fix.py
file modified
+43 -10 
    Don't renew non-IPA issued certs in ipa-cert-fix
    
    If the Apache, 389-ds or KDC certificate was issued by
    a third party there is nothing we can do, regardless of
    whether it is expired or not.
    
    Report which certificates will not be renewed so the
    admin can manually do do (likely in the event of a
    third-party certificate).
    
    https://pagure.io/freeipa/issue/8600
    
    Signed-off-by: Rob Crittenden <rcritten@redhat.com>
    Reviewed-By: Florence Blanc-Renaud <flo@redhat.com>
file modified
+43 -10
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.