#4294 CA renewal update plugin reports error with CA-less
Closed: Fixed None Opened 10 years ago by mkosek.


# ipa-server-install -U --setup-dns --forwarder= --reverse-zone=47.34.10.in-addr.arpa. -p 12345678 -a 12345678 -r  IDM.LAB.ENG.BRQ.REDHAT.COM -n idm.lab.eng.brq.redhat.com --http_pkcs12 STAR.idm.lab.eng.brq.redhat.com.p12 --dirsrv_pkcs12 STAR.idm.lab.eng.brq.redhat.com.p12 --http_pin 12345678 --dirsrv_pin 12345678 --root-ca-file cacert.pem 
  [7/13]: setting up browser autoconfig
  [8/13]: publish CA cert
  [9/13]: creating a keytab for httpd
  [10/13]: clean up any existing httpd ccache
  [11/13]: configuring SELinux for httpd
  [12/13]: restarting httpd
  [13/13]: configuring httpd to start on boot
Done configuring the web interface (httpd).
Applying LDAP updates
ipa.ipaserver.install.plugins.ca_renewal_master.update_ca_renewal_master: ERROR    certmonger request for ipaCert not found
Restarting the directory server
Restarting the KDC
Configuring DNS (named)

What version are you updating from? The error message is there deliberately, I guess I can tone it down to warning or info.

I was not updating, I was installing new IPA CA-less server. See the package version and the ipa-server-install command in the description.


  • 50c7f3b Fix update_ca_renewal_master plugin on CA-less installs.

Metadata Update from @mkosek:
- Issue assigned to jcholast
- Issue set to the milestone: FreeIPA 4.0 - 2014/04

7 years ago

Log in to comment on this ticket.