ACK (with CAVEAT) *CAVEAT:* In addition, after applying the patch, change the following lines in 'base/common/src/com/netscape/cms/authentication/TokenAuthentication.java': Change line 164 from: + c = sendAuthRequest(authHost, authAdminPort, authURL, content); to: + c = sendAuthRequest(authHost, authEEPort, authURL, content); Change line 167 from: + + authHost + ":" + authAdminPort + " " + e1); to: + + authHost + ":" + authEEPort + " " + e1); *TEST:* As a very similar patch was already tested on RHCS 8.1, the testing of this patch was minimal: * applied patch + CAVEAT to source, built on x86_64 Fedora 18 machine, and installed packages * performed a pkispawn of a CA (skipping configuration) * performed a firefox browser GUI configuration of the CA * successfully tested the CA * performed a pkispawn of a CA clone (skipping configuration) * performed a firefox browser GUI configuration of the CA clone * successfully tested interactions between the CA master and CA clone: o EE master AGENT master o EE master AGENT clone o EE clone AGENT master o EE clone AGENT clone On 02/12/13 07:58, Ade Lee wrote: