Description of problem:Cert error found while trying to setup ipa configuration through appliance console. This same test works as expected on 22.214.171.124
Version-Release number of selected component (if applicable):126.96.36.199
Steps to Reproduce:
1.SSH to appliance
3.Configure option 14 'configure external authentication'
4.Fill out required details
Actual results:Setup fails due to certificate error
Expected results:IPA configure successfully
Two pastebins showing errors, First time I ran this through I retrieve a cert but its expired, Second time it uses the previously retrieved cert but fails to verify its talking to an IPA server.
Can you please PM me the access details to the machine displaying this failure?
Thank you! JoeV
Using cfme-vsphere-188.8.131.52-1.x86_64.vsphere.ova today (2017-02-03) I have
successfully configured External Auth / IPA without encountering the reported
I think this seems to be a sporadic bug, I can't seem to reproduce this on a 5.7.1 build successfully though was able to on Friday last week. Joe and I have had a quick bluejeans to discuss this and both agree that it is most likely to do with some network connectivity issues during setup.
I propose we downgrade this from blocker status and we potentially look at a way to improve error reporting during ipa setup specifically to do with network issues.
In researching this today I believe the appliance_console is already
doing a fine job of properly indicating the source of the problem.
"Peer's Certificate has expired."
This indicates that the certificates need to be renewed.
This issue is well described here: http://www.freeipa.org/page/IPA_2x_Certificate_Renewal
Luke, I think the appliance_console is already doing a fine job of
indicating the configuration issue.
I don't think this is a bug.
I am going to close it as NOTABUG. If you feel differently please provide
more information or connect with me to discuss.