On Wed, Oct 21, 2020 at 07:21:21AM -, Krzysztof O via FreeIPA-users wrote:
> > On Mon, Oct 19, 2020 at 11:42:08PM +1000, Fraser Tweedale via FreeIPA-users
> > wrote:
> > Found the ticket: https://pagure.io/freeipa/issue/5706
> >
> > I also wrote a blog post about this, detailing the workaroun
> On Mon, Oct 19, 2020 at 11:42:08PM +1000, Fraser Tweedale via FreeIPA-users
> wrote:
> Found the ticket: https://pagure.io/freeipa/issue/5706
>
> I also wrote a blog post about this, detailing the workaround
> procedure:
> https://frasertweedale.github.io/blog-redhat/posts/2020-10-20-ipa-cert-l
On Mon, Oct 19, 2020 at 11:42:08PM +1000, Fraser Tweedale via FreeIPA-users
wrote:
> On Mon, Oct 19, 2020 at 06:52:20AM -, Krzysztof O via
> FreeIPA-users wrote:
> > Hello,
> >
> > I'd like to ask of is there any workaround for issuing
> > certificates that will have Common Name longer that 6
On Mon, Oct 19, 2020 at 06:52:20AM -, Krzysztof O via
FreeIPA-users wrote:
> Hello,
>
> I'd like to ask of is there any workaround for issuing
> certificates that will have Common Name longer that 64 characters?
>
> For FREEIPA version less than 4.8.0 which is designated for RHEL
> 8, when we
On ma, 19 loka 2020, Christian Heimes via FreeIPA-users wrote:
On 19/10/2020 15.17, Krzysztof O via FreeIPA-users wrote:
Krzysztof O via FreeIPA-users wrote:
RFC 3280 defines the upper-bound of common name at 64 and is mandatory.
What problem is this causing?
rob
When issuing CSR from the o
On 19/10/2020 15.17, Krzysztof O via FreeIPA-users wrote:
>> Krzysztof O via FreeIPA-users wrote:
>>
>> RFC 3280 defines the upper-bound of common name at 64 and is mandatory.
>>
>> What problem is this causing?
>>
>> rob
>
> When issuing CSR from the overcloud nodes, the CN field value exceeds th
> Krzysztof O via FreeIPA-users wrote:
>
> RFC 3280 defines the upper-bound of common name at 64 and is mandatory.
>
> What problem is this causing?
>
> rob
When issuing CSR from the overcloud nodes, the CN field value exceeds the 64
characters limit and the request fails. We expect to be able
Krzysztof O via FreeIPA-users wrote:
> Hello,
>
> I'd like to ask of is there any workaround for issuing certificates that will
> have Common Name longer that 64 characters?
>
> For FREEIPA version less than 4.8.0 which is designated for RHEL 8, when we
> will have to stay with current version
