-
Story
-
Resolution: Unresolved
-
Minor
-
None
-
None
-
None
-
subs-client-tools
-
None
-
False
-
False
-
-
None
-
None
-
None
-
None
-
Enhancement
-
-
Unspecified
-
None
-
57,005
+++ This bug was initially created as a clone of Bug #2124276 +++
Description of problem:
Enabling SCA should remove subscription from host after certain interval or by initiating # subscription-manager refresh command.
Version-Release number of selected component (if applicable):
Red Hat Satellite 6.12.
How reproducible: Always
Steps to Reproduce:
1. Attach a subscription to the host.
2. Enable SCA on Satellite Organization.
3. The subscription is still attached to the host.
- subscription-manager list --consumed
Actual results:
- Host is still showing attached subscription when executing # subscription-manager list --consumed command.
Expected results:
- The subscription should be removed automatically or by refreshing subscription-manager with # subscription-manager refresh command.
Additional info:
As of Candlepin v4.3.3, the existing regenerate consumer entitlements endpoint [1] supports a new query param, "cleanup_entitlements" which will trigger the removal of unused entitlements prior to certificate regeneration. If the consumer is operating in SCA mode, this will revoke all of their individual entitlements before regenerating the SCA certificate. Providing this query parameter to an earlier version of Candlepin will have no effect, and it will be silently ignored.
If that option is not viable, all supported Candlepin versions have a general "revoke all entitlements" endpoint [2] that could be used instead, if the client is willing to perform a second request during the refresh op.
[1] PUT /candlepin/consumers/
{consumer_uuid}/certificates[2] DELETE /candlepin/consumers/{consumer_uuid}
/entitlements
