#5831 ipa-ca-install man page has misleading information
Closed: fixed 6 years ago Opened 7 years ago by tscherf.

When you run "ipa-ca-install" without the replica file, you get the following misleading information:

CA is already installed.

When I run the same tool with the replica file, it works ok. In the man page we say though that the replica file is optional:

"""
SYNOPSIS
ipa-ca-install [OPTION]... [replica_file]

Alternatively, you can run ipa-ca-install without replica_file to upgrade from CA-less to CA-full.
"""

We should either fix the man page to make the replica file a requirement or change the ipa-ca-install to to setup a new CA with new key material which then doesn't require a replica file.


4.2 (RHEL-7.2 release)

The behavior probably changed since 4.2.

Also ipa-ca-install man page doesn't contain any mention of domain levels, would fix in 4.4/4.3.2

4.3.2 was released, moving to 4.3.3

Metadata Update from @tscherf:
- Issue assigned to someone
- Issue set to the milestone: FreeIPA 4.3.3

7 years ago

Metadata Update from @mbasti:
- Issue close_status updated to: None
- Issue set to the milestone: FreeIPA 4.4.5 (was: FreeIPA 4.3.3)

7 years ago

Metadata Update from @frenaud:
- Issue assigned to frenaud (was: someone)

6 years ago

Metadata Update from @frenaud:
- Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/678 (was: 0)

6 years ago

master:

  • b96a942 ipa-ca-install man page: Add domain level 1 help

ipa-4-4:

  • 1734e14 ipa-ca-install man page: Add domain level 1 help

ipa-4-5:

  • 262723b ipa-ca-install man page: Add domain level 1 help

Metadata Update from @mbasti:
- Issue close_status updated to: fixed
- Issue status updated to: Closed (was: Open)

6 years ago

Login to comment on this ticket.

Metadata