RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.
Bug 1779981 - ipa-cert-fix warning message should use commercial name for the product.
Summary: ipa-cert-fix warning message should use commercial name for the product.
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Enterprise Linux 8
Classification: Red Hat
Component: ipa
Version: 8.1
Hardware: Unspecified
OS: Unspecified
medium
unspecified
Target Milestone: rc
: 8.0
Assignee: Thomas Woerner
QA Contact: ipa-qe
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2019-12-05 07:20 UTC by Mohammad Rizwan
Modified: 2021-05-18 15:48 UTC (History)
7 users (show)

Fixed In Version: ipa-4.9.2-1
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2021-05-18 15:47:50 UTC
Type: Bug
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description Mohammad Rizwan 2019-12-05 07:20:17 UTC 
Description of problem:
ipa-cert-fix command warning contains upstream project name FreeIPA. When it comes to RHEL, it should use commercial name (identity management or IPA).

Version-Release number of selected component (if applicable):
ipa-server-4.8.0-11.module+el8.1.0+4247+9f3fd721.x86_64

Red Hat Enterprise Linux release 8.1 (Ootpa)

How reproducible:
always


Steps to Reproduce:
1. Move date to expire the subsystem certificates 
2. run ipa-cert-fix


Actual results:
[root@master ~]# ipa-cert-fix 

                          WARNING

ipa-cert-fix is intended for recovery when expired certificates
prevent the normal operation of FreeIPA.  It should ONLY be used
in such scenarios, and backup of the system, especially certificates
and keys, is STRONGLY RECOMMENDED.


The following certificates will be renewed:

Expected results:
Mention of upstream (FreeIPA) should not be there.
Comment 1 Mohammad Rizwan 2019-12-05 11:52:35 UTC 
`man ipa-crlgen-manage` also have mention of FreeIPA, it should be IPA.
Comment 3 Antonio Torres 2021-02-11 10:32:25 UTC 
master:
https://pagure.io/freeipa/c/6518a600b46bf6db57ec1adc1282999293e1dfb8 Change FreeIPA references to IPA and Identity Management

ipa-4-9:
https://pagure.io/freeipa/c/f05ee29d10f2be294d707bd34bfc8399c06b63c5 Change FreeIPA references to IPA and Identity Management
Comment 4 Antonio Torres 2021-02-11 10:36:12 UTC 
Upstream ticket:
https://pagure.io/freeipa/issue/8669
Comment 5 anuja 2021-02-17 14:26:23 UTC 
Pre-verified using:
compose: /rhel-8.4.0-mbs/9973-1386-idm/

[root@master ~]# rpm -qa ipa-server
ipa-server-4.9.2-1.module+el8.4.0+9973+3d202164.x86_64
[root@master ~]# date -s +3Years+1day
Sun Feb 18 09:17:35 EST 2024
[root@master ~]# ipa-cert-fix

                          WARNING

ipa-cert-fix is intended for recovery when expired certificates
prevent the normal operation of IPA.  It should ONLY be used
in such scenarios, and backup of the system, especially certificates
and keys, is STRONGLY RECOMMENDED.
Comment 8 anuja 2021-02-19 10:58:12 UTC 
Verified using nightly compose:
ipa-server-4.9.2-1.module+el8.4.0+9973+3d202164.x86_64

[root@master ~]# date -s +3Years+1day
Tue Feb 20 05:56:06 EST 2024
[root@master ~]# ipa-cert-fix

                          WARNING

ipa-cert-fix is intended for recovery when expired certificates
prevent the normal operation of IPA.  It should ONLY be used
in such scenarios, and backup of the system, especially certificates
and keys, is STRONGLY RECOMMENDED.

Based on this marking bug as verified.
Comment 10 errata-xmlrpc 2021-05-18 15:47:50 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: idm:DL1 and idm:client security, bug fix, and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2021:1846
Note You need to log in before you can comment on or make changes to this bug.