Michael Rainey (Contractor, Code 7320) via FreeIPA-users wrote:
Rob for the win. When comparing the serial numbers there is big
difference, one digit on the failing system and 10 digits on the working
system. Upon further inspection, I noticed the ldapsearch returned two
usercertificates where the failing system returned one.
Is there a bit of magic sauce to update the certificate?
Ok I missed something. This works on one master but not the other?
It suggests that replication is broken between the two. Use
ipa-cacert-manage -v `hostname` to see what the status is.
Is the actual PEM file correct on both systems?
rob
_______________________________________________
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org