Description of Problem: Currently, only able to register a client system using http://. Need instructions and RPM's for installing server key and exporting certificates to client systems. Version-Release number of selected component (if applicable): see bug 63780
shouldn't this be assigned to misa?
It's a matter of repackaging the two scripts we ship with the proxy code, within the satellite (rhn/backend/proxy/certs)
SSL rpm rhns-certs-1.2.2-21 installed, but sign.sh fails to create RPMs for client install. Output: [root@satellite root]# sh /var/www/rhns/sign.sh Using configuration from openssl.cnf Enter PEM pass phrase: Check that the request matches the signature Signature ok The Subjects Distinguished Name is as follows countryName :PRINTABLE:'us' stateOrProvinceName :PRINTABLE:'nc' localityName :PRINTABLE:'raleigh' organizationName :PRINTABLE:'red hat' organizationalUnitName:PRINTABLE:'rhn' commonName :PRINTABLE:'jkomenda' emailAddress :IA5STRING:'jkomenda' Certificate is to be certified until May 20 19:23:38 2003 GMT (365 days) Write out database with 1 new entries Data Base Updated Building rhns-proxy-ssl-cert-1.0-1.noarch.rpm install: creating directory `/tmp/rhns-proxy-ssl-cert-1.0-build' install: creating directory `/tmp/rhns-proxy-ssl-cert-1.0-build/rhns-proxy-ssl-cert-1.0' server.crt -> /tmp/rhns-proxy-ssl-cert-1.0-build/rhns-proxy-ssl-cert-1.0//etc/httpd/conf/ssl.crt/server.crt mkdir: created directory `/tmp/rhns-proxy-ssl-cert-1.0-build/rhns-proxy-ssl-cert-1.0//etc' mkdir: created directory `/tmp/rhns-proxy-ssl-cert-1.0-build/rhns-proxy-ssl-cert-1.0//etc/httpd' mkdir: created directory `/tmp/rhns-proxy-ssl-cert-1.0-build/rhns-proxy-ssl-cert-1.0//etc/httpd/conf' mkdir: created directory `/tmp/rhns-proxy-ssl-cert-1.0-build/rhns-proxy-ssl-cert-1.0//etc/httpd/conf/ssl.crt' server.key -> /tmp/rhns-proxy-ssl-cert-1.0-build/rhns-proxy-ssl-cert-1.0//etc/httpd/conf/ssl.key/server.key mkdir: created directory `/tmp/rhns-proxy-ssl-cert-1.0-build/rhns-proxy-ssl-cert-1.0//etc/httpd/conf/ssl.key' /tmp/rhns-proxy-ssl-cert-1.0-build/rhns-proxy-ssl-cert-1.0.tar.gz: No such file or directory
If this is going to be the SSL package for Porxy and Satellite, the directories it builds out should probably be more generic too.
rhns-certs-tools is now more generic.
Proxy SSL procedure now works on Satellite. Client and browser can connect securely. Closing.