Red Hat Bugzilla – Bug 789449
SSL commonName verification does not work on multihome SAM
Last modified: 2014-09-18 12:47:58 EDT
Created attachment 560954 [details]
Take a SAM instance which is connected to three networks.
on enterprise vlan0, hostname is sam-lab1.example.com
on private vlan1, hostname is sam.vlan1-lab1
on private vlan2, hostname is sam-lab1.vlan2
SSL certificate is likely to be created to hostname sam-lab1.example.com during katello-configure.
Clients on vlan1 and vlan2 need to connect to SAM using corresponding vlans. They do not have connection to vlan0.
When a customer tries to initiate a connection from a client to a server, they get a message "Peer certificate commonName does not match host".
Attaching /etc/httpd/conf.d/katello.conf as a reference -- it's created by katello-install.
moving to sam14
This bug was closed because of a lack of activity. If you feel this bug should be reconsidered for attention please feel free to re-open the bug with a comment stating why it should be reconsidered.