freeipa team mailing list archive

[Norman Kabir <nkabir@xxxxxxxxx>]

At this stage, I am just trying to make it work so apologies for the
hacks.

For context:

* I am using your PPAs for FreeIPA and dogtag
* I linked named-pkcs11 to named
* /etc/hostname is set to fqdn (kvm-10.ipa.kvm)

And the following script for installation:

#!/usr/bin/env bash

sudo ipa-server-install \
-r IPA.KVM \
-n ipa.kvm \
--setup-dns \
--no-host-dns \
-p xxxxxxxxx \
-a xxxxxxxxx \
--mkhomedir \
--domain=ipa.kvm \
--hostname=kvm-10.ipa.kvm \
--no-dns-sshfp \
--no-dnssec-validation \
--auto-forwarders \
--auto-reverse \
--zonemgr=ipa@xxxxxxxxxxxx

-- 
You received this bug notification because you are a member of FreeIPA,
which is subscribed to freeipa in Ubuntu.
https://bugs.launchpad.net/bugs/1772450

Title:
  freeipa server -- problems with certificates

Status in freeipa package in Ubuntu:
  Confirmed

Bug description:
  After having installed FreeIPA server on Ubuntu 18.04 and having
  sorted out all the other bugs, I still have problems with
  certificates.

  In the web interface, every attempt to select the "Authentication ->
  Certificates" tab ends with the following error

  IPA Error 4301: CertificateOperationError
  Certificate operation cannot be completed: Unable to communicate with CMS (Start tag expected, '<' not found, line 1, column 1)

  The problem also occur with command line utilities. For example, 'ipa
  cert-show 1' returns the error: 'ipa: ERROR: Certificate operation
  cannot be completed: Unable to communicate with CMS (500)'

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/freeipa/+bug/1772450/+subscriptions