Bug 2167470

Summary: Default value of "SSL CA file" parameter missing in Administer -> Settings -> Authentication -> "Server CA file" location on Satellite Server Web UI.
Product: Red Hat Satellite Reporter: Anand Jambhulkar <ajambhul>
Component: RegistrationAssignee: satellite6-bugs <satellite6-bugs>
Status: CLOSED NOTABUG QA Contact: Sam Bible <sbible>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 6.13.0CC: lstejska, shwsingh
Target Milestone: UnspecifiedKeywords: Triaged
Target Release: Unused   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2023-02-21 09:42:54 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Anand Jambhulkar 2023-02-06 17:38:25 UTC
Description of problem:
----------------------

The default value of "SSL CA file" parameter in the Administer -> Settings -> Authentication -> "Server CA file" location on Satellite Server Web UI is missing due to which, the location from where the CA file should be copied and transferred over to the client machine for the first time registration of the client to the Satellite Server without using the "--insecure" option is unknown.



Version-Release number of selected component (if applicable):
------------------------------------------------------------

Satellite 6.13



How reproducible:
----------------

Always



Steps to Reproduce:
------------------

1. Install Red Hat Satellite 6.13.

2. Go to Satellite Web UI -> Administer -> Settings -> Authentication 

3. Check the "Server CA file" parameter.



Actual results:
--------------

The default value of "Server CA file" parameter is missing in the "Satellite Web UI -> Administer -> Settings -> Authentication" setting.



Expected results:
----------------

The default value of "Server CA file" parameter should be provided so that the CA file can be manually copied from the specified location over to the Content Host so that, the first time registration of the client using Global Registration Template can go through without using the "--insecure" option.

Comment 1 Leos Stejskal 2023-02-14 09:16:14 UTC
Hi,
I can't reproduce the issue, value of "Server CA file" is set during installation.
How did you create the instance?

Comment 2 Leos Stejskal 2023-02-21 09:42:54 UTC
Hi,
I take my previous comment  back, field "Server CA file" is NOT set during installation, verified on 6.11, 6.12 & 6.13.

However this doesn't have any effect on registration, if you want to register hosts without using --insecure,
you have to download & install CA certificate on the machines before the registration begins.
The path to CA is defined in the "SSL certificate" setting.

I'm closing BZ as not a bug.