Bug 789449

Summary: SSL commonName verification does not work on multihome SAM
Product: Red Hat Satellite Reporter: Mike Khusid <mkhusid>
Component: Content ManagementAssignee: Katello Bug Bin <katello-bugs>
Status: CLOSED WONTFIX QA Contact: Katello QA List <katello-qa-list>
Severity: low Docs Contact:
Priority: unspecified    
Version: 6.0.0CC: bkearney, jofernan, jomara, lzap, tomckay, xdmoon
Target Milestone: UnspecifiedKeywords: Triaged
Target Release: Unused   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
: 795879 (view as bug list) Environment:
Last Closed: 2014-03-18 17:39:16 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On:    
Bug Blocks: 795879, 971511    
Attachments:
Description Flags
katello.conf none

Description Mike Khusid 2012-02-10 19:23:26 UTC 
Created attachment 560954 [details]
katello.conf

Take a SAM instance which is connected to three networks.

on enterprise vlan0, hostname is sam-lab1.example.com
on private vlan1, hostname is sam.vlan1-lab1
on private vlan2, hostname is sam-lab1.vlan2

SSL certificate is likely to be created to hostname sam-lab1.example.com during katello-configure.

Clients on vlan1 and vlan2 need to connect to SAM using corresponding vlans. They do not have connection to vlan0.

When a customer tries to initiate a connection from a client to a server, they get a message "Peer certificate commonName does not match host". 

Attaching /etc/httpd/conf.d/katello.conf as a reference -- it's created by katello-install.
Comment 12 Bryan Kearney 2013-07-30 16:33:23 UTC 
moving to sam14
Comment 13 Mike McCune 2014-03-18 17:39:16 UTC 
This bug was closed because of a lack of activity.  If you feel this bug should be reconsidered for attention please feel free to re-open the bug with a comment stating why it should be reconsidered.