When installing new CA master, ipa-ca-install fails with:
ipa-ca-install
[23/26]: restarting certificate server [24/26]: migrating certificate profiles to LDAP [error] IOError: [Errno 2] No such file or directory: '/var/lib/pki-ca/conf/CS.cfg' Your system may be partly configured. Run /usr/sbin/ipa-server-install --uninstall to clean up.
This happens because the dogtag_version option is not set to 10 on API initialization, so Dogtag 9 paths are used.
dogtag_version
10
Does this apply only to 4.2? As in 4.3 in #5197, the support for Dogtag 9 was removed.
Yes, this is a 4.2 only bug.
Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1301687
ipa-4-2:
Metadata Update from @jcholast: - Issue assigned to jcholast - Issue set to the milestone: FreeIPA 4.2.4
Login to comment on this ticket.