#49 handle certificate existence case better in client install
Closed: Fixed None Opened 13 years ago by rcritten.

If either certmonger is already tracking a certificate named Server-Cert or a cert by that nickname exists in /etc/pki/nssdb then the client installer will display an error about certmonger configuration failing.

We should:

  • check to see if a cert by name Server-Cert exists.
  • check to see if certmonger is tracking Server-Cert (ipa-getcert list)

If either of these is true print an appropriate message and bail out of configuring certmonger further.


Installation successful with IPA v2 HEAD against pki-common-1.3.8-1.fc12.noarch after using system-config-language to set the locale to fr_FR.

Updated the wrong ticket.

use a more unique nickname for the client machine cert
freeipa-530-nickname.patch

The nickname is now: IPA Machine Certificate - <fqdn>

Updated patch that uses a while loop w/ the sleep to be smarter
freeipa-530-2-nickname.patch

Metadata Update from @rcritten:
- Issue assigned to rcritten
- Issue set to the milestone: FreeIPA 2.0 - 2010/09

7 years ago

Login to comment on this ticket.

Metadata