Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 1345755 - Support for specifying IPA lightweight CA
Support for specifying IPA lightweight CA
Status: CLOSED ERRATA
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: certmonger (Show other bugs)
7.3
Unspecified Unspecified
unspecified Severity unspecified
: rc
: ---
Assigned To: Jan Cholasta
Kaleem
:
Depends On:
Blocks: 1200731
  Show dependency treegraph
 
Reported: 2016-06-13 02:49 EDT by Jan Cholasta
Modified: 2016-11-04 03:50 EDT (History)
8 users (show)

See Also:
Fixed In Version: certmonger-0.78.4-3.el7
Doc Type: If docs needed, set a value
Doc Text:
IdM now supports sub-CAs Previously, Identity Management (IdM) only supported one certificate authority (CA) that was used to sign all certificates issued within the IdM domain. Now, you can use lightweight sub-CAs for better control over the purpose for which a certificate can be used. For example, a Virtual Private Network (VPN) server can be configured to only accept certificates issued by a sub-CA created for that purpose, rejecting certificates issued by other sub-CAs, such as a smart card CA. To support this functionality, you can now specify an IdM lightweight sub-CA when requesting a certificate with certmonger. For details, see https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7-Beta/html-single/Linux_Domain_Identity_Authentication_and_Policy_Guide/index.html#lightweight-sub-cas
Story Points: ---
Clone Of:
Environment:
Last Closed: 2016-11-04 03:50:44 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
console.log (1.99 KB, text/plain)
2016-09-20 02:20 EDT, Abhijeet Kasurde 		no flags Details
Add an attachment (proposed patch, testcase, etc.)


External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHEA-2016:2519 normal SHIPPED_LIVE certmonger bug fix update 2016-11-03 10:15:16 EDT

  None (edit)
Description Jan Cholasta 2016-06-13 02:49:52 EDT 
This bug is created as a clone of upstream ticket:
https://fedorahosted.org/certmonger/ticket/51

Certmonger needs a way to specify an IPA lightweight CA name when
requesting a certificate.  It is the Certmonger side of
https://fedorahosted.org/freeipa/ticket/4559.

Design page: http://www.freeipa.org/page/V4/Sub-CAs#Certmonger
Comment 6 Abhijeet Kasurde 2016-08-17 04:54:47 EDT 
Marking as FailedQA as found following bug - BZ1367683
Comment 9 Abhijeet Kasurde 2016-09-20 02:16:59 EDT 
Verified using IPA and Certmonger version::
ipa-server-4.4.0-12.el7.x86_64
certmonger-0.78.4-3.el7.x86_64


Marking BZ as verified.
Comment 10 Abhijeet Kasurde 2016-09-20 02:20 EDT 
Created attachment 1202712 [details]
console.log
Comment 12 errata-xmlrpc 2016-11-04 03:50:44 EDT 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHEA-2016-2519.html
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.