URL: https://github.com/freeipa/freeipa/pull/635 Author: flo-renaud Title: #635: man ipa-cacert-manage install needs clarification Action: opened
PR body: """ The customers are often confused by ipa-cacert-manage install. The man page should make it clear that IPA CA is not modified in any way by this command. https://pagure.io/freeipa/issue/6795 """ To pull the PR as Git branch: git remote add ghfreeipa https://github.com/freeipa/freeipa git fetch ghfreeipa pull/635/head:pr635 git checkout pr635
From deec2ac832286f6e1f9c29dcb75021cec4c3823e Mon Sep 17 00:00:00 2001 From: Florence Blanc-Renaud <f...@redhat.com> Date: Wed, 22 Mar 2017 08:49:39 +0100 Subject: [PATCH] man ipa-cacert-manage install needs clarification The customers are often confused by ipa-cacert-manage install. The man page should make it clear that IPA CA is not modified in any way by this command. https://pagure.io/freeipa/issue/6795 --- install/tools/man/ipa-cacert-manage.1 | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/install/tools/man/ipa-cacert-manage.1 b/install/tools/man/ipa-cacert-manage.1 index 4515d7c..637cef1 100644 --- a/install/tools/man/ipa-cacert-manage.1 +++ b/install/tools/man/ipa-cacert-manage.1 @@ -44,7 +44,7 @@ When the IPA CA is not configured, this command is not available. \- Install a CA certificate .sp .RS -This command can be used to install the certificate contained in \fICERTFILE\fR as an additional CA certificate to IPA. +This command can be used to install the certificate contained in \fICERTFILE\fR as an additional CA certificate to IPA. Important: this does not replace IPA CA but adds the provided certificate as a known CA. This is useful for instance when using ipa-server-certinstall to replace HTTP/LDAP certificates with third-party certificates signed by this additional CA. .sp Please do not forget to run ipa-certupdate on the master, all the replicas and all the clients after this command in order to update IPA certificates databases. .RE
-- Manage your subscription for the Freeipa-devel mailing list: https://www.redhat.com/mailman/listinfo/freeipa-devel Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
