Description of problem: The customer is trying to configure the Publishing module to publish to the LDAP and to the filesystem. After completing the configuration, he logged in to the Agent interface and used 'Update Directory Server' section to update everything, but no certificates is published in LDAP as well as in the file system. Redhat CS 7.1 on Solaris 9. Additional info: Client: UC Lawrence Berkeley Lab Oracle Account No: 703864 Escalated to SEG according to the replay from Marco for the nss-support-list mail regarding the issue. This event sent from IssueTracker by ble [SEG - Certificate System Engineering] issue 122822
Ben, Below is the details of what the customer is doing. Here is the output, when i clicked "Update Directory Server" and select update everything. The Certificate Revocation List has been published in the directory. The Certificate Manager certificate has been published in the directory. All valid certificates have already been published in the directory or there is no valid certificate. Nothing to update at this time. Error unpublishing expired certificates in the directory. See log files for more details. Failed to unpublish certificate: 0x6. Failed to unpublish certificate: 0x7. 2 revoked certificates are unpublished in the directory. List Certificates interface returns '38' certificates are valid. For publishing CRL and Certificates into file system. - For CRL - Configured Publisher 'CRLFiles' using the plugin 'FileBasedPublisher - with directory 'web-apps/ee/ca/CRL - Configured the rule with 'NoMap' mapper and Publisher 'CRLFiles' - no value for predicate - For Certificates - Configured Publisher 'CertFiles' using the plugin 'FileBasedPublisher - with directory 'web-apps/ee/ca/Certificates - Configured the rule with 'NoMap' mapper and Publisher 'CertFiles' The 'CertFiles' publisher worked when i issued a new certificate. But When try to publish everything it didn't publish nothing in the filesystem. CRL Never get published in the file system. Attached is the tarball of /opt/redhat-cs/cert-instance/logs directory. Let me know if you need anything else. --Sadique This event sent from IssueTracker by ble [SEG - Certificate System Engineering] issue 122822
I could re-create this issue (can't publishing the certificates (existing certs) in a file) in the lab about a week ago. I was mention this issue to Thomas already. Still working with Engineering to find out a solution. Ben. This event sent from IssueTracker by ble [SEG - Certificate System Engineering] issue 122822
Need to integrate customer's provided changes into the code base. Target fix 8.0
User nkwan's account has been closed