Hi, On Mon, Aug 7, 2023 at 4:17 AM luckydog xf via FreeIPA-users < freeipa-users@lists.fedorahosted.org> wrote:
> I installed a new IPA with self-signed CA and certificates. I didn't find > anything related NSSDB under /etc/http/alias > > FreeIPA uses NSS for httpd up to version 4.6 (the server certificate is stored in /etc/httpd/alias) but version 4.7+ uses SSL (the server certificate is stored in /var/lib/ipa/certs/httpd.crt). You can have a look at the release notes for 4.7 here <https://www.freeipa.org/page/Releases/4.7.0.html>. Hope this clarifies, flo So they're no longer used ? Right ? All are within PEM and Key specified in > the ssl.conf > === > SSLCertificateFile /var/lib/ipa/certs/httpd.crt > > SSLCertificateKeyFile /var/lib/ipa/private/httpd.key > > > SSLCACertificateFile /etc/ipa/ca.crt > === > _______________________________________________ > FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org > To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue >
_______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue