I've just found an old p12 file from 2019. I was able to extract the key from that and it does match the CA Subystem cert that expired 8 March that is listed in LDAP. So if I could somehow generate a new certificate with this and import into the NSS DB for /etc/pki/pki-tomcat/alias would that at least get the CA started? -- _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
[Freeipa-users] Re: CA Subsystem certificate
Travis West via FreeIPA-users Thu, 28 Mar 2024 08:01:35 -0700
- [Freeipa-users] CA Subsystem certi... Travis West via FreeIPA-users
- [Freeipa-users] Re: CA Subsys... Rob Crittenden via FreeIPA-users
- [Freeipa-users] Re: CA Su... Travis West via FreeIPA-users
- [Freeipa-users] Re: CA Su... Travis West via FreeIPA-users
- [Freeipa-users] Re: C... Rob Crittenden via FreeIPA-users
- [Freeipa-users] R... Travis West via FreeIPA-users
- [Freeipa-users] R... Travis West via FreeIPA-users
- [Freeipa-users] R... Travis West via FreeIPA-users
- [Freeipa-use... Rob Crittenden via FreeIPA-users
- [Freeipa... Travis West via FreeIPA-users
- [Freeipa... Travis West via FreeIPA-users
- [Freeipa... Travis West via FreeIPA-users