Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Critical
Fix Version/s: certsys-10.3
Affects Version/s: certsys-9.7
Component/s: Doc-deployment-guide
Labels:

Severity:
None

AssignedTeam:
rhel-idm-cs

Target Milestone:

rc
Story Points:
None
Blocked:
False
Ready:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
None
Sprint:
None

Preliminary Testing:
None
Test Coverage:
None

Bugzilla Bug:
RHBZ: 1861542

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None
Internal Target Milestone numeric:
42

When installing PKI with HSM in FIPS mode, pkispawn might generate the following warning message:

certutil: could not change trust on certificate: SEC_ERROR_TOKEN_NOT_LOGGED_IN: The operation failed because the PKCS#11 token is not logged in.

The message is actually generated by certutil (bug #1393668) but a workaround has been implemented in PKI (bug #1395817), so it's no longer a problem in PKI.

However, the warning message still appears and may cause some concerns to customers, so some manual steps need to be provided to verify that the certificate was imported properly.

external trackers

PnT-DevOps Jira RHCS-1558

Red Hat Issue Tracker RHCS-1558

Assignee:: Florian Delehaye (Inactive)

Reporter:: Endi Dewata

QA Contact:: RH Bugzilla Integration

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2025/06/09 3:11 PM

Updated:: 2025/08/26 4:13 PM

Resolved:: 2022/02/22 3:26 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates

PagerDuty