Hi, I have executed script setup.sh from package "freeipa-letsencrypt". The installation finished with this error message: ipaplatform.redhat.tasks: INFO: Systemwide CA database updated. ipalib.backend: DEBUG: Destroyed connection context.rpcclient_140228802354200 ipapython.admintool: INFO: The ipa-certupdate command was successful certutil: could not authenticate to token NSS Certificate DB.: SEC_ERROR_IO: An I/O error occurred during security authorization. certutil: Server-Cert is neither a key-type nor a nickname nor a key-id: SEC_ERROR_IO: An I/O error occurred during security authorization.
What's causing this error? And how can I fix this? The file "httpd-csr.der" in working directory (in my case /etc/ssl/ipa-le/) is 0 bytes. Therefore I conclude that the installation was not successful. [root@ipa freeipa-letsencrypt]# ls -lR /etc/ssl/ipa-le/ /etc/ssl/ipa-le/: insgesamt 0 drwxr-xr-x. 2 root root 187 3. Nov 19:49 ca -rw-r-----. 1 root root 0 3. Nov 20:19 httpd-csr.der /etc/ssl/ipa-le/ca: insgesamt 24 -rw-r--r--. 1 root root 1220 3. Nov 19:49 DSTRootCAX3.pem -rw-r--r--. 1 root root 1967 3. Nov 19:49 isrgrootx1.pem -rw-r--r--. 1 root root 1702 3. Nov 19:49 LetsEncryptAuthorityX1.pem -rw-r--r--. 1 root root 1675 3. Nov 19:49 LetsEncryptAuthorityX2.pem -rw-r--r--. 1 root root 1647 3. Nov 19:49 LetsEncryptAuthorityX3.pem -rw-r--r--. 1 root root 1647 3. Nov 19:49 LetsEncryptAuthorityX4.pem THX _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
