Bug 1292099 - --setup-dns is forgotten for using an external PKI
Summary: --setup-dns is forgotten for using an external PKI
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Fedora
Classification: Fedora
Component: freeipa
Version: 23
Hardware: x86_64
OS: Linux
unspecified
medium
Target Milestone: ---
Assignee: David Kupka
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
: 1292042 (view as bug list)
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2015-12-16 13:17 UTC by hdunkel
Modified: 2016-04-01 00:27 UTC (History)
9 users (show)

Fixed In Version: freeipa-4.2.4-1.fc23
Clone Of:
Environment:
Last Closed: 2016-04-01 00:27:31 UTC
Type: Bug
Embargoed:


Attachments (Terms of Use)

Description hdunkel 2015-12-16 13:17:35 UTC
If I run

	ipa-server-install -n example.com -r EXAMPLE.COM --external-ca --subject="O=example AG,C=DE" --setup-dns --forwarder ...

then it asks me get signed certificates and to run ipa-server-install again. Quote:

	The next step is to get /root/ipa.csr signed by your CA and re-run /usr/sbin/ipa-server-install as:
	/usr/sbin/ipa-server-install --external-cert-file=/path/to/signed_certificate --external-cert-file=/path/to/external_ca_certificate

If I do, then DNS is not setup. I have to add the DNS specific options again. This is highly misleading. ipa-server-install should show *all* necessary command line arguments to complete the second step, according to step 1.

Unfortunately the log file is gone. Did you know that ipa-server-install overwrites its own logfiles?

Comment 1 Petr Vobornik 2015-12-17 11:11:18 UTC
This is a regression in 4.2.

Comment 2 Petr Vobornik 2015-12-17 11:13:20 UTC
Upstream ticket:
https://fedorahosted.org/freeipa/ticket/5556

Comment 4 Petr Vobornik 2016-01-07 14:51:39 UTC
*** Bug 1292042 has been marked as a duplicate of this bug. ***

Comment 5 Jan Kurik 2016-02-24 15:37:55 UTC
This bug appears to have been reported against 'rawhide' during the Fedora 24 development cycle.
Changing version to '24'.

More information and reason for this action is here:
https://fedoraproject.org/wiki/Fedora_Program_Management/HouseKeeping/Fedora24#Rawhide_Rebase

Comment 6 Fedora Update System 2016-03-21 15:23:03 UTC
freeipa-4.2.4-1.fc23 has been submitted as an update to Fedora 23. https://bodhi.fedoraproject.org/updates/FEDORA-2016-cb0ac4420c

Comment 7 Fedora Update System 2016-03-22 15:22:31 UTC
freeipa-4.2.4-1.fc23 has been pushed to the Fedora 23 testing repository. If problems still persist, please make note of it in this bug report.
See https://fedoraproject.org/wiki/QA:Updates_Testing for
instructions on how to install test updates.
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2016-cb0ac4420c

Comment 8 Fedora Update System 2016-04-01 00:27:27 UTC
freeipa-4.2.4-1.fc23 has been pushed to the Fedora 23 stable repository. If problems still persist, please make note of it in this bug report.


Note You need to log in before you can comment on or make changes to this bug.