pki-bot
commented
3 years ago Comment from edewata (@edewata) at 2015-09-15 20:49:47
This is important to fix due to conflicting certificate mapping (ticket 1595).
Open pki-bot opened 3 years ago
pki-bot
commented
3 years ago Comment from edewata (@edewata) at 2015-09-15 20:49:47
This is important to fix due to conflicting certificate mapping (ticket 1595).
pki-bot
commented
3 years ago Comment from edewata (@edewata) at 2017-02-27 14:05:09
Metadata Update from @edewata:
pki-bot
commented
3 years ago Comment from edewata (@edewata) at 2017-04-07 22:43:46
Metadata Update from @edewata:
This issue was migrated from Pagure Issue #1009. Originally filed by edewata (@edewata) on 2014-05-20 17:36:28:
The pkidbuser is used by Dogtag (and probably IPA too) to communicate to the LDAP database. Currently the user is created under ou=People under the Dogtag subtree, so it will appear as a Dogtag user in the CLI. However, it's actually not a valid Dogtag user and cannot be used for Dogtag authentication. It would be better to create the user outside ou=People, but still under the subsystem's subtree (e.g. uid=pkidbuser,o=pki-ca). This way the user will not appear as Dogtag user, but will still be replicated.