Dogtag will fail the installation if the file /root/ipa.csr exists when doing an external CA installation.
# touch /root/ipa.csr # ipa-server-install <options> --external-ca FAIL
It fails because the CSR exists.
This is most often seen on frequent install/uninstall. This may need to be done in two steps:
I would also like if the file was moved to /var/lib/ipa/ca.csr.
Right, this is probably what we will need to do in 4.0. This is a requirement from SELinux team, right?
Moving stabilization tickets that do not affect FreeIPA 4.0 release usability in any significant way to 4.0.1 stabilization milestone.
FreeIPA 4.0.1 was released, moving to next bugfixing release milestone.
master:
ipa-4-1:
ipa-4-0:
Metadata Update from @rcritten: - Issue assigned to jcholast - Issue set to the milestone: FreeIPA 4.0.2
Login to comment on this ticket.