I’ve been able to successfully install and test Dogtag Certificate Enrollment and Approval APIs using
self signed CA available with standard Dogtag installation.
Also, the java based pkiconsole works perfectly fine without any issues.
However, I’m unable to do so Installing an externally signed CA configuration.
I’ve Dogtag 10.1 version installed.
I followed the exact instructions outlined in the section 'Installing an externally signed CA’ at the link below:
While the installation seems to succeed, I’m seeing following errors in logs (/var/lib/pki/pki-tomcat/logs/ca/debug) when I launch pkiconsole (java based console) and provide username/password (caadmin/password123):
---------------------------------------------------------------------------------
[26/Mar/2015:15:54:39][http-bio-8443-exec-9]: AdminServlet:service() uri = /ca/auths
[26/Mar/2015:15:54:39][http-bio-8443-exec-9]: AdminServlet::service() param name='OP_TYPE' value='OP_AUTH'
[26/Mar/2015:15:54:39][http-bio-8443-exec-9]: AdminServlet::service() param name='OP_SCOPE' value='authType'
[26/Mar/2015:15:54:47][http-bio-8443-exec-11]: AdminServlet:service() uri = /ca/auths
[26/Mar/2015:15:54:47][http-bio-8443-exec-11]: AdminServlet::service() param name='OP_TYPE' value='OP_AUTH'
[26/Mar/2015:15:54:47][http-bio-8443-exec-11]: AdminServlet::service() param name='OP_SCOPE' value='auths'
[26/Mar/2015:15:54:47][http-bio-8443-exec-11]: SignedAuditEventFactory: create() message=[AuditEvent=AUTH_FAIL][SubjectID=$Unidentified$][Outcome=Failure][AuthMgr=passwdUserDBAuthMgr][AttemptedCred=caadmin] authentication failure
[26/Mar/2015:15:54:47][http-bio-8443-exec-11]: SignedAuditEventFactory: create() message=[AuditEvent=AUTH_FAIL][SubjectID=$Unidentified$][Outcome=Failure][AuthMgr=passwdUserDBAuthMgr][AttemptedCred=caadmin] authentication failure
---------------------------------------------------------------------------------
Any help is greatly appreciated.
Thanks,
Mahendra