cancel
Showing results for 
Search instead for 
Did you mean: 
SubuRama
Flight Engineer
Flight Engineer
  • 1,187 Views

ch05 S02 Step 5 certmonger shows CA_UNCONFIGURED instead of MONITORING

Jump to solution

Step 5.3 requests a cert and Step 5.4 verifies the status with certmonger.

On my client VM, the cert.key gets generated in /etc/vsftpd/certs but I do *not* see the cert.pem get generated. I also see CA_UNCONFIGURED for the getcert list -i <key_id> command. Any ideas how to debug this? (The stop-tracking is so I can issue the command again)

Screenshot from 2024-03-07 10-55-17.png

1 Solution

Accepted Solutions
TM
Flight Engineer Flight Engineer
Flight Engineer
  • 1,137 Views

Dear @SubuRama,

Normally you had to specify where to put the signed certificate with the -f option of the command ipa-getcert request, similarly to the way you specified the location of the key with the -k option.

I hope it helps.

Tshimanga

View solution in original post

2 Replies
TM
Flight Engineer Flight Engineer
Flight Engineer
  • 1,138 Views

Dear @SubuRama,

Normally you had to specify where to put the signed certificate with the -f option of the command ipa-getcert request, similarly to the way you specified the location of the key with the -k option.

I hope it helps.

Tshimanga

swefredde
Mission Specialist
Mission Specialist
  • 1,133 Views

I ran into the exact same problem the other day. Don't remember exactly how I solved it but I would guess I forgot to run the "semanage fcontext -a -t cert_t "/etc/vsftpd/certs(/.*)?" command followed by the "restorecon -v /etc/vsftpd/certs" command.
Had to revoke it and create a new request since I didn't know how to update the first one.

 

Join the discussion
You must log in to join this conversation.