rcritten
commented
2 years ago It's true, I had a bunch of unpushed changes in my tree. Should be up-to-date now.
Closed rcritten closed 2 years ago
rcritten
commented
2 years ago It's true, I had a bunch of unpushed changes in my tree. Should be up-to-date now.
The dogtag connectivity test contains the command ipa cert-show to verify that the CA basically works and we are allowed to use it. It had a hardcoded 1 as the CA certificate since pre-random serial numbers it was a predictable value.
Instead read the CA cert and pluck the serial number from it and use that value instead.
https://github.com/freeipa/freeipa-healthcheck/issues/260
Signed-off-by: Rob Crittenden rcritten@redhat.com