Bug 1356955
Summary: | When default-ca is updated, it doesn't update the nssdb | ||
---|---|---|---|
Product: | Red Hat Satellite | Reporter: | Ivan Necas <inecas> |
Component: | Installation | Assignee: | Ivan Necas <inecas> |
Status: | CLOSED ERRATA | QA Contact: | Lukas Pramuk <lpramuk> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 6.2.0 | CC: | bbuckingham, jcallaha, lpramuk |
Target Milestone: | Unspecified | Keywords: | Triaged |
Target Release: | Unused | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2018-02-21 16:59:39 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 1218251 | ||
Bug Blocks: |
Description
Ivan Necas
2016-07-15 11:15:22 UTC
A workaround is rm -rf /etc/pki/katello/nssdb satellite-installer this makes sure the nssdb is recreated with valid certificates Created redmine issue http://projects.theforeman.org/issues/15700 from this bug Upstream bug assigned to inecas Upstream bug assigned to inecas Moving this bug to POST for triage into Satellite 6 since the upstream issue http://projects.theforeman.org/issues/15700 has been resolved. VERIFIED. @satellite-6.3.0-15.0.beta.el7sat.noarch katello-installer-base-3.4.1.3-1.el7sat.noarch by manual reproducer in comment#0 3. # satellite-installer Installing Done [100%] [.....................................] Success! * Katello is running at https://SATFQDN * To install an additional Foreman proxy on separate machine continue by running: foreman-proxy-certs-generate --foreman-proxy-fqdn "$FOREMAN_PROXY" --certs-tar "/root/$FOREMAN_PROXY-certs.tar" The full log is at /var/log/foreman-installer/satellite.log >>> after certs storage removal in /root/ssl-build the other certs are generated aswell Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2018:0336 |