Description of problem:
Currently the installer ask user to copy/past the CA Cert from engine.
e. For oVirt’s CA bundle, if you entered Yes for the preceding question, copy the certificate content from /etc/pki/ca-trust/source/anchors/ca.pem and paste it here. Then, press Enter twice. Otherwise, if you entered No for the preceding question, this question does not appear.
Installer should be able to download the cert and import if users decide to import it.
Setting Target Release to make installer bot happy.
@dougsland: This pull request references Bugzilla bug 1839896, which is invalid:
expected the bug to target the "4.5.0" release, but it targets "---" instead
Comment /bugzilla refresh to re-evaluate validity if changes to the Bugzilla bug are made, or edit the title of this pull request to link to a different bug.
Just a note:
The OpenShift installer do not allow us to use sudo command. Based on that, we cannot write a helper to import any cert to customers in their system. Instead, we will load the cert from Engine into the http request or just use non ssl connection.
In fact, no need to ask users copy/past the cert.
Setting no doc but we depend on:
OCPRHV-175: [Docs]: Update IPI install documentation
1. guarantee there is no engine CA certificate imported in the machine beforehand:
# rm /etc/pki/ca-trust/source/anchors/ca.pem
2. # openshift-install create cluster --log-level=debug --dir=resources
Installation succeeded and no message asking for the CA certificate
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory (OpenShift Container Platform 4.6 GA Images), and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.