Details
-
Bug
-
Resolution: Unresolved
-
Normal
-
None
-
rhel-9.3.0
-
Normal
-
sst_ccs
-
False
-
-
Red Hat Enterprise Linux
Description
Background
Installing Identity Management with external CA involves running the installer twice:
- First step the installer would generate a CSR for Certificate Authority,
- Signed certificate will be supplied in 2nd step for the installer to complete the whole installation process.
The second step is described in 6.iii of the interactive installation option:
In Ansible option, it is in step 9 of below section:
Issue:
In CLI installer option, documentation provides an example command that requires two certificates:
--external-cert-file=/tmp/servercert20170601.pem --external-cert-file=/tmp/cacert.pem
Whereas in Ansible option, one certificate is required:
playbook_sensitive_data.yml
vars:
ipaserver_external_cert_files: "/root/chain.crt"
Please make the installation examples consistent.