On 5/4/19 5:29 AM, Adrian HY via FreeIPA-users wrote:
> Hello all,
>
> My commercial certificate has expired today. The pki-tomcatd Service has
> stopped and I can´t to login at the web-gui.
> Is it possible to revert the original self signed certificate ?
>
Hi,
can you clarify which certificate expired? There are a lot of
certificates in a FreeIPA installation (IPA CA, the certs for HTTP,
LDAP, Pkinit, the certs for Dogtag etc...)

You mention "the original self-signed certificate", are you referring to
IPA CA? It would help to have the full story, for instance "IPA was
installed with self-signed CA, then I replaced the self-signed CA with
an externally-signed CA etc..."

flo

> Thanks.
>
> _______________________________________________
> FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
> To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org
> Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
> List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
> List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
>