https://bugzilla.redhat.com/show_bug.cgi?id=681334
Please talk to Nalin & Rob first to figure the best course of action as it is not clear how to identify the certs that need to be removed.
I requested the install and uninstall logs in the BZ, that will hopefully provide the details we need.
attachment freeipa-rcrit-748-client.patch
To test this, replacing ipa.example.com with the fqdn of your client:
- service certmonger start - ipa-getcert list (should be none) - ipa-client-install - certutil -D -n 'IPA Machine Certificate - ipa.example.com' -d /etc/pki/nssdb/ - ipa-client-install --uninstall - service certmonger start - ipa-getcert list (should be none)
master: 61d7065
Metadata Update from @dpal: - Issue assigned to rcritten - Issue set to the milestone: FreeIPA 2.0.3 RC3 (bug fixing)
Login to comment on this ticket.