[Freeipa-devel] [freeipa PR#5119][opened] Require an ipa-ca SAN on 3rd party certs if ACME is enabled

URL: https://github.com/freeipa/freeipa/pull/5119 Author: rcritten Title: #5119: Require an ipa-ca SAN on 3rd party certs if ACME is enabled Action: opened PR body: """ Require an ipa-ca SAN on 3rd party certs if ACME is enabled ACME requires an ipa-ca SAN to have a fixed URL to connect to. If the Apache certificate is replaced by a 3rd party cert then it must provide this SAN otherwise it will break ACME. Add a status option to ipa-acme-manage. https://pagure.io/freeipa/issue/8498 Marking as ipa-next since I'm sure yet if ACME is going to be backported to ipa-4-8. """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/5119/head:pr5119 git checkout pr5119