It would create CSR for you on install. On Wed, Oct 31, 2018 at 1:22 PM Henrik Johansson via FreeIPA-users < freeipa-users@lists.fedorahosted.org> wrote:
> Hello, > > I am looking at using FreeIPA without CA, using external signed > certificates, reading the documentations it looks possible using > —dirsrv-certfile, —http-cert-file and —point-certfile. Should I just create > a CSR for the hostname by by hand and get it signed? Also is there any good > reason for having different certs for http, ldap and pkinit? Can I just use > one certificate for all services and for all servers and replicas using > Subject Alternative Names? > > Regards > Henrik > _______________________________________________ > FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org > To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org > Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org > -- With best regards, Andrey Bondarenkomail:me@andreybondarenko.comhttps://andreybondarenko.com skype:andrey.bondarenko phone, Telegram, WhatsApp, etc:+420-773-591-443 7758 40AC 88CC 96C9 0C9A 9EE4 3B72 547B 7538 D41B
_______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
