Bug 488537

Summary: RFE: Method to Import Local CA Certificates
Product: [Fedora] Fedora Reporter: Daniel Qarras <dqarras>
Component: ca-certificatesAssignee: Joe Orton <jorton>
Status: CLOSED DUPLICATE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: medium Docs Contact:
Priority: low    
Version: rawhideCC: fitzsim, jorton, tmraz
Target Milestone: ---Keywords: FutureFeature
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2009-05-28 06:21:29 EDT Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Description Daniel Qarras 2009-03-04 13:43:39 EST
Description of problem:
In enterprise world different departments set up services and put them behind https using certificates signed with local corporate CA certificates. In Fedora real CA certificates are provided in system level by files

/etc/pki/java/cacerts
/etc/pki/tls/certs/ca-bundle.crt
/etc/pki/nssdb/cert8.db

These are part of RPMs and modifying them is not feasible (e.g., RPM upgrades will wipe locally added CA certs away).

A method to add local CA certs in system level is needed.
Comment 1 Daniel Qarras 2009-03-05 16:31:21 EST
BTW, this would probably be also very useful with things like IPA which use (by default) a self create CA cert and then issue certificates to clients.
Comment 2 Joe Orton 2009-05-28 06:21:29 EDT

*** This bug has been marked as a duplicate of bug 466626 ***