freeipa

Clone
Source Code
GIT

#1604 Broken certificate system - cert-request fails
Closed: Duplicate None Opened 12 years ago by mkosek.

Closed: Duplicate
Reopen Issue

An internal error is raised when running ipa cert-request:

# ipa host-add vm-046.idm.lab.bos.redhat.com
------------------------------------------
Added host "vm-046.idm.lab.bos.redhat.com"
------------------------------------------
  Host name: vm-046.idm.lab.bos.redhat.com
  Principal name: host/vm-046.idm.lab.bos.redhat.com@IDM.LAB.BOS.REDHAT.COM
  Managed by: vm-046.idm.lab.bos.redhat.com

# ipa service-add HTTP/vm-046.idm.lab.bos.redhat.com
-------------------------------------------------------------------------
Added service "HTTP/vm-046.idm.lab.bos.redhat.com@IDM.LAB.BOS.REDHAT.COM"
-------------------------------------------------------------------------
  Principal: HTTP/vm-046.idm.lab.bos.redhat.com@IDM.LAB.BOS.REDHAT.COM
  Managed by: vm-046.idm.lab.bos.redhat.com
# certutil -R -s 'CN=vm-046.idm.lab.bos.redhat.com,O=IDM.LAB.BOS.REDHAT.COM' -d /etc/httpd/alias/ -a -z /etc/group -f /etc/httpd/alias/pwdfile.txt > /home/mkosek/vm-046.idm.lab.bos.redhat.com.csr


Generating key.  This may take a few moments...

# ipa cert-request --principal HTTP/vm-046.idm.lab.bos.redhat.com /home/mkosek/vm-046.idm.lab.bos.redhat.com.csr
ipa: ERROR: an internal error has occurred

Respective stack trace:

[Wed Aug 10 05:11:44 2011] [error] ipa: INFO: admin@IDM.LAB.BOS.REDHAT.COM: service_add(u'HTTP/vm-046.idm.lab.bos.redhat.com@IDM.LAB.BOS.REDHAT.COM', force=False, all=False, raw=False, version=u'2.11'): SUCCESS
[Wed Aug 10 05:11:47 2011] [error] ipa: INFO: sslget 'https://vm-140.idm.lab.bos.redhat.com:9444/ca/ee/ca/profileSubmitSSLClient'
[Wed Aug 10 05:11:47 2011] [error] ipa: ERROR: non-public: KeyError: 'certificate'
[Wed Aug 10 05:11:47 2011] [error] Traceback (most recent call last):
[Wed Aug 10 05:11:47 2011] [error]   File "/usr/lib/python2.7/site-packages/ipaserver/rpcserver.py", line 220, in wsgi_execute
[Wed Aug 10 05:11:47 2011] [error]     result = self.Command[name](*args, **options)
[Wed Aug 10 05:11:47 2011] [error]   File "/usr/lib/python2.7/site-packages/ipalib/frontend.py", line 425, in __call__
[Wed Aug 10 05:11:47 2011] [error]     ret = self.run(*args, **options)
[Wed Aug 10 05:11:47 2011] [error]   File "/usr/lib/python2.7/site-packages/ipalib/frontend.py", line 731, in run
[Wed Aug 10 05:11:47 2011] [error]     return self.execute(*args, **options)
[Wed Aug 10 05:11:47 2011] [error]   File "/usr/lib/python2.7/site-packages/ipalib/plugins/cert.py", line 371, in execute
[Wed Aug 10 05:11:47 2011] [error]     cert = x509.load_certificate(result['certificate'])
[Wed Aug 10 05:11:47 2011] [error] KeyError: 'certificate'

Component versions:

389-ds-base-1.2.9.5-1.fc15.x86_64
pki-ca-9.0.10-1.fc15.noarch

Duplicate to #1578.

Metadata Update from @mkosek:
- Issue assigned to rcritten
- Issue set to the milestone: FreeIPA 2.1 - 2011/07
7 years ago

Login to comment on this ticket.

Metadata
None
None
None
important
None
None
None
None
defect
None
None
Certificate management
None
0
None
None
None
None
0
None
None
None
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.