Re: [Pki-users] pki cli default CA Admin Unauthorized

On 12/21/2015 4:52 PM, Alex Harrison wrote: approve requests using the default ca admin created at install using the commands from the wiki: seems I receive this any time I perform either an admin or agent command. Any idea what steps I am missing? Hi, The above wiki page is actually used to create a new CA admin user, which requires an existing CA admin to approve it. When you install CA subsystem it will have a default CA admin user which you can use directly. It's not necessary to create another CA admin user unless you want to give admin access to someone else. To use the default CA admin user please take a look at this page: http://pki.fedoraproject.org/wiki/Default_CA_Admin You can either import the CA admin cert into ~/.dogtag/nssdb first, or use it directly from ~/.dogtag/pki-tomcat/ca/alias if you created the CA with pki_client_database_purge=False. If you're still having issues, could you post the exact commands you're trying to execute? Thanks. -- Endi S. Dewata