4 Dec
2024
4 Dec
'24
9:43 a.m.
Dmitry Krasov via FreeIPA-users wrote:
Hello Rob. Thanks for answering.
I trying to go to Authentication tab and got "IPA Error 4301: CertificateOperationError".
That's interesting but what about verifying that the SAN is correct in the certificate that is preventing Ubuntu clients from enrolling?
It's best to tackle things one at a time. I doubt these are related. For the certificateoperationerror you'll need to dig into the Apache and/or PKI logs to see what happened.
As for the certs expiring in two years, that is the issuance period. Renewing is not necessary.
rob