Note: This bug is displayed in read-only format because
the product is no longer active in Red Hat Bugzilla.
Red Hat Satellite engineering is moving the tracking of its product development work on Satellite to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "Satellite project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs will be migrated starting at the end of May. If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "Satellite project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/SAT-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.
Description of problem:
We have to troubleshoot some pulp issues on the capsule. At the moment it is not possible use pulp-admin to login to the pulp services running on the capsule.
An upstream bug http://projects.theforeman.org/issues/12368 confirms this bug
To login we normally use the trick from the http://www.katello.org/troubleshooting/faq.html to add the certificates:
mkdir -p ~/.pulp && chmod 0700 ~/.pulp
sudo cat /etc/pki/katello/certs/pulp-client.crt /etc/pki/katello/private/pulp-client.key > ~/.pulp/user-cert.pem
Alternative is loign from root and read the password from the pulp server config
pulp-admin login -u admin -p $(awk '/^ *default_password/ { print $NF }' /etc/pulp/server.conf)
Version-Release number of selected component (if applicable):
How reproducible:
Steps to Reproduce:
1. Install pulp-admin on capsule
2. Run pulp-admin login
3. Run pulp-admin tasks lists
Actual results:
Step 2 already fails
Expected results:
Login works
Additional info:
I installed a fresh capsule 6.2.10 and got it regitered in the sat6 server and it is working fine for serving the content.
We are using a custom ssl certificate
The pulp-admin login is still not working
[crash/LI] root@li-lc-1589:~# pulp-admin login -u admin -p $(awk '/^ *default_password/ { print $NF }' /etc/pulp/server.conf)
An internal error occurred on the Pulp server:
RequestException: POST request
on /pulp/api/v2/actions/login/ failed with 500 - error signing cert request:
Signature ok
subject=/CN=admin:admin:5947de7db127ca4b58c2892a
Getting CA Private
Key
CA certificate and CA private key do not
match
140382766852000:error:0B080074:x509 certificate
routines:X509_check_private_key:key values mismatch:x509_cmp.c:331:
unable to
write 'random state'
Using the SSL cert based login does not work either because the soruce files are not available on the Capsule
[crash/LI] root@li-lc-1589:~# sudo cat /etc/pki/katello/certs/pulp-client.crt /etc/pki/katello/private/pulp-client.key > ~/.pulp/user-cert.pem
cat: /etc/pki/katello/certs/pulp-client.crt: No such file or directory
cat: /etc/pki/katello/private/pulp-client.key: No such file or directory