Issue #5808: ipa-getcert: misleading error message with -D option - freeipa

freeipa

#5808 ipa-getcert: misleading error message with -D option

Closed: Invalid None Opened 8 years ago by cheimes.

ipa-getcert shows a misleading error message when a certificate is requested with the -D option but without -K option.

# ipa-getcert request -d /etc/httpd/alias -n 'Server-Cert' -t 'NSS Certificate DB' -T caIPAserviceCert -D fileserver.ipa.example -C /usr/libexec/ipa/certmonger/restart_httpd
The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) is used.

A better error message would be:

The IPA backend requires the use of the -K option (principal name) when the -N option (subject name) or -D option (DNS name) is used.

cheimes commented 8 years ago

Rob told me that FreeIPA is the wrong project. I have opened a certmonger bug instead, https://fedorahosted.org/certmonger/ticket/46

Metadata Update from @cheimes:
- Issue assigned to someone
- Issue set to the milestone: 0.0 NEEDS_TRIAGE

7 years ago

Metadata

Assignee

someone

Tags

None

Blocking

None

Depending on

None

Priority

minor

Milestone

0.0 NEEDS_TRIAGE

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

CLI

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

None

tester

None

changelog

None

design

None

freeipa

Source Code

#5808 ipa-getcert: misleading error message with -D option Closed: Invalid None Opened 8 years ago by cheimes.

Metadata

#5808 ipa-getcert: misleading error message with -D option

Closed: Invalid None Opened 8 years ago by cheimes.