Harald Dunkel via FreeIPA-users wrote:
Hi Rob,
On 6/25/18 4:53 PM, Rob Crittenden via FreeIPA-users wrote:
>
> We'd need to see what certs are being tracked, getcert list.
>
This gets stuck, too:
[root@ipa1 ~]# getcert list
Error org.freedesktop.DBus.Error.TimedOut
I found
https://bugzilla.redhat.com/show_bug.cgi?id=1519206, but the conclusion
("please reboot") is not helpful. I did.
The dbus developers don't think it should ever be restarted mid-stream.
I suppose they have their reasons.
I'd need to see the contents of /var/lib/certmonger/requests/* to try to
figure out what is bogging things down.
NOTE: THERE MAY BE EMBEDDED PASSWORDS IN THOSE FILES. PLEASE DO NOT
PASTE TO A PUBLIC LIST.
But I do need to see whether there is a PIN at all so for any key_pin=
just replace with key_pin=XXXXXXX or something.
On an ipa replica still running CentOS 7.4 I get the attached list of certificates.
Hope this helps.
The certs on one system don't affect another.
rob
Regards
Harri
_______________________________________________
FreeIPA-users mailing list -- freeipa-users(a)lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-leave(a)lists.fedorahosted.org
Fedora Code of Conduct:
https://getfedora.org/code-of-conduct.html
List Guidelines:
https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/freeipa-users@lists.fedorah...