Having Cert issues on a centos 6 IPA 3 server ipa: ERROR: Kerberos error: ('Unspecified GSS failure. Minor code may provide more information', 851968)/('KDC returned error string: PROCESS_TGS', -1765328324)
ipa config-mod --enable-migration=TRUE ipa: ERROR: cannot connect to u'https://lax4ipa01.mia.bill1st.local/ipa/xml': (SSL_ERROR_BAD_CERT_DOMAIN) Unable to communicate securely with peer: requested domain name does not match the server's certificate.
Old server, pretty much cant register any new clients to. Willing to pay for support for migration help.
ipa-server-3.0.0-47.el6.centos.x86_64 ipa-pki-ca-theme-9.0.3-7.el6.noarch python-iniparse-0.3.1-2.1.el6.noarch ipa-python-3.0.0-47.el6.centos.x86_64 ipa-pki-common-theme-9.0.3-7.el6.noarch ipa-admintools-3.0.0-47.el6.centos.x86_64 ipa-server-selinux-3.0.0-47.el6.centos.x86_64 device-mapper-multipath-0.4.9-87.el6.x86_64 libipa_hbac-1.12.4-47.el6.x86_64 libipa_hbac-python-1.12.4-47.el6.x86_64 device-mapper-multipath-libs-0.4.9-87.el6.x86_64 sssd-ipa-1.12.4-47.el6.x86_64 ipa-client-3.0.0-47.el6.centos.x86_64
Hi Robert,
First of all could you please post to freeipa-users@lists.fedorahosted.org instead because pagure is more for development requests?
In your post on freeipa-users we will need everything in your original post above plus the output of: hostname cat /etc/ipa/ca.crt certutil -L -d /etc/httpd/alias getcert list
Best regards, François
Will do ..
i think there is a bug, when i go to lists.fedorahosted.org. I register, and i am able to create an account under admin.fedora. WHen i try to log back in, it doesnt allow me.
It seems like you managed to post information at https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org/thread/JF7TV3ZY5IQC4JZMJHQP2AD25R6HK7DB/
Good! I will close this ticket now.
Metadata Update from @fcami: - Issue close_status updated to: invalid - Issue status updated to: Closed (was: Open)
Login to comment on this ticket.