Ticket was cloned from Red Hat Bugzilla (product Fedora): Bug 1292099
If I run ipa-server-install -n example.com -r EXAMPLE.COM --external-ca --subject="O=example AG,C=DE" --setup-dns --forwarder ... then it asks me get signed certificates and to run ipa-server-install again. Quote: The next step is to get /root/ipa.csr signed by your CA and re-run /usr/sbin/ipa-server-install as: /usr/sbin/ipa-server-install --external-cert-file=/path/to/signed_certificate --external-cert-file=/path/to/external_ca_certificate If I do, then DNS is not setup. I have to add the DNS specific options again. This is highly misleading. ipa-server-install should show *all* necessary command line arguments to complete the second step, according to step 1. Unfortunately the log file is gone. Did you know that ipa-server-install overwrites its own logfiles?
SHould be fixed in 4.2.4, 4.3.1 and master.
master:
ipa-4-3:
ipa-4-2:
Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1301674
Metadata Update from @pvoborni: - Issue assigned to dkupka - Issue set to the milestone: FreeIPA 4.2.4
Login to comment on this ticket.