Bug 2079890
Summary: | renew certificates sooner before they expire | ||
---|---|---|---|
Product: | [oVirt] ovirt-engine | Reporter: | Michal Skrivanek <michal.skrivanek> |
Component: | General | Assignee: | Milan Zamazal <mzamazal> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Petr Kubica <pkubica> |
Severity: | high | Docs Contact: | |
Priority: | unspecified | ||
Version: | --- | CC: | bugs, lsvaty, mkalinin, pkubica |
Target Milestone: | ovirt-4.5.0-1 | Flags: | pm-rhel:
ovirt-4.5?
lsvaty: exception+ |
Target Release: | 4.5.0.7 | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | ovirt-engine-4.5.0.7 | Doc Type: | If docs needed, set a value |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2022-05-30 06:42:37 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | Infra | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 2075352 |
Description
Michal Skrivanek
2022-04-28 12:47:26 UTC
engine-setup: (after 1 year when engine certificates are about to expire) - One or more of the certificates should be renewed, because they expire soon, or include an invalid expiry date, or they were created with validity period longer than 398 days, or do not include the subjectAltName extension, which can cause them to be rejected by recent browsers and up to date hosts. host-upgrade: during enrolling certificates or host upgrade, relevant certificates were renewed - new certificates have additional 5 years of validity. Verified in ovirt-engine-4.5.0.7-0.9.el8ev.noarch |