On http://docs.redhat.com/docs/en-US/Red_Hat_Update_Infrastructure/2.0/html/Installation_Guide/chap-Installation_Guide-Client_Entitlements.html, in step 7 of "Procedure 7.2. Create a Client Configuration RPM", the instructions tell us to use /etc/pki/rhui/entitlement-ca.crt as the CA certificate with which clients are going to verify the CDS server certificate. This is the wrong file - it contains the CA which is used to sign the client entitlement certificates. The correct file is the CA certificate from Procedure 3.1 on http://docs.redhat.com/docs/en-US/Red_Hat_Update_Infrastructure/2.0/html/Installation_Guide/chap-Installation_Guide-RHUI_Installer.html#sect-Installation_Guide-RHUI_Installer-Setting_up_SSL
More info needed: Need the full path location of the required CA in procedure 3.1
We've actually decided to remove this prompt from the client configuration rpm creation. We're now reading this path from the config file at /etc/rhui/rhui-tools.conf, rhua.ssl_ca_cert setting. We need to update the docs to remove this prompt from the sample screen capture. If you want, you can add a note to the docs about this change.
The path is /etc/pki/rhua/rhua-ssl-ca-cert.crt, but we're removing this prompt from procedure 7.2
This prompt is removed from the documentation. See the step 7. which is in 2.1 like step 8. in 2.0. http://documentation-stage.bne.redhat.com/docs/en-US/Red_Hat_Update_Infrastructure/2.1/html/Administration_Guide/chap-Administration_Guide-Client_Entitlements.html Note: the procedure is in 2.1 version 4.2 instead of 7.2 in old version 2.0. Moving bug to VERIFIED
*** Bug 810854 has been marked as a duplicate of this bug. ***
Previously A step was removed from the "Client Entitlements: section of the RHUI Administration Guide
Technical note added. If any revisions are required, please edit the "Technical Notes" field accordingly. All revisions will be proofread by the Engineering Content Services team. New Contents: Previously, an extra procedural step was required for Client Entitlements regarding CA Certificates. The new update has automated the procedure and the step has been removed from the Client Entitlements Chapter of the RHUI Administration Guide.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHEA-2012-1205.html