10:40 p.m.
Hi folks
I have some doubts
How is the better step for configure replication of dogtag-pki
Im read this manual and it's very confusing for me .
Now i have running dogtag-pki-10.5.1-2.el7pki.noarch in one server1 (RHEL
7.x)
But i need to replicate in the other server2 in case of failure this
server1
Im read this manual https://www.dogtagpki.org/wiki/DS_Replication_Setup
-Firs Question in server1 i have modified 3 profiles in dogtag PKI (how
to replicate this configuration in the server2)
-Second Question in server1 i have some certs ssl how to replicate this
certs to server 2
--
Ce courrier électronique et les fichiers qui y sont annexés peuvent
renfermer des
renseignements privilégiés et confidentiels à l'intention exclusive du
destinataire. Si
vous n'êtes pas le destinataire, vous n'êtes pas autorisé(e) à utiliser, à
copier ou à
divulguer à un tiers le contenu de ce courrier électronique ni des fichiers
joints. Si
vous avez reçu ce courrier électronique par erreur, veuillez en aviser
l'expéditeur
immédiatement par courrier électronique et détruire ce message ainsi que
les fichiers
en annexe.
This electronic mail message -- and any attachments -- may contain
privileged/confidential information, intended only for the use of the
addressee. If you
are not the addressee, you may not use, copy or disclose to a third party
the content
of this message or its attachments. If you have received this message by
mistake,
please notify us immediately by e-mail and destroy this message, along with
all
attachments
1:33 p.m.
Hi,
The PKI version that you have is rather old. The latest stable version is
PKI 10.9 and
we are working on PKI 10.10. Is it possible for you to upgrade to the
latest version?
If PKI is used as part of IPA, the profiles and certs will be replicated
automatically.
However, if it's used outside of IPA, the profiles and the certs will need
to be copied
manually to the new replica.
Here's the upstream doc that we have on CA cloning for PKI 10.5:
https://www.dogtagpki.org/wiki/PKI_10.5_Installing_CA_Clone
However, the PKI 10.5 code and doc is no longer maintained upstream. If you
need
to use this particular version on RHEL I'd suggest to check RHEL
documentation or
contact RH support.
Thanks.
--
Endi S. Dewata
On Thu, Oct 8, 2020 at 10:41 PM Jose Antonio Mendoza Roa <roa(a)unixmexico.org>
wrote:
Hi folks
I have some doubts
How is the better step for configure replication of dogtag-pki
Im read this manual and it's very confusing for me .
Now i have running dogtag-pki-10.5.1-2.el7pki.noarch in one server1
(RHEL 7.x)
But i need to replicate in the other server2 in case of failure this
server1
Im read this manual https://www.dogtagpki.org/wiki/DS_Replication_Setup
-Firs Question in server1 i have modified 3 profiles in dogtag PKI (how
to replicate this configuration in the server2)
-Second Question in server1 i have some certs ssl how to replicate this
certs to server 2
--
Ce courrier électronique et les fichiers qui y sont annexés peuvent
renfermer des
renseignements privilégiés et confidentiels à l'intention exclusive du
destinataire. Si
vous n'êtes pas le destinataire, vous n'êtes pas autorisé(e) à utiliser, à
copier ou à
divulguer à un tiers le contenu de ce courrier électronique ni des
fichiers joints. Si
vous avez reçu ce courrier électronique par erreur, veuillez en aviser
l'expéditeur
immédiatement par courrier électronique et détruire ce message ainsi que
les fichiers
en annexe.
This electronic mail message -- and any attachments -- may contain
privileged/confidential information, intended only for the use of the
addressee. If you
are not the addressee, you may not use, copy or disclose to a third party
the content
of this message or its attachments. If you have received this message by
mistake,
please notify us immediately by e-mail and destroy this message, along
with all
attachments
_______________________________________________
Pki-users mailing list
Pki-users(a)redhat.com
https://www.redhat.com/mailman/listinfo/pki-users
1851
days inactive
1851
days old
1 comments
2 participants
participants (2)
-
Endi Dewata -
Jose Antonio Mendoza Roa