Description of problem: Currently, you can register a RHUI consumer @ access.redhat.com, consume a RHUI subscription, and download a content certificate. There is no protection to ensure that this certificate is not used to download content to multiple RHUAs. We need to somehow tie this certificate to a particular RHUA. Is the consumer identity embedded in the certificate? Filed at the request of cmorgan.
Punting to next release.
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 500 days