Manualshelf

Installation guide

ManualsBrandsRed Hat ManualsConsumer electronicsCERTIFICATE 8.0 RELEASE NOTES
21222324252627282930
7. Edit the profile selection template to use the URL for the new secure end-entities client
authentication services port. For example, assuming the default end-entities client authentication
SSL port of 9446:
vim /var/lib/instance_nam e/webapps/ca/ee/ca/ProfileSelect.template
... original ...
uri = 'profileSubmitSSLClient';
... update ...
uri =
'https://server.exam ple.com:9446/ca/eeca/ca/profileSubmitSSLClient';
8. T he new port information needs to be added to security domain description of the subsystem, as
stored in the database.
a. Connect to the database and update the schema.
/usr/lib/mozldap/ldapmodify -p db_port -h db_host -D "cn=Directory
Manager" -w db_password
dn: cn=schema
changetype: modify
add: attributeTypes
attributeTypes: ( SecureEEClientAuthPort-oid NAME
'SecureEEClientAuthPort' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-
VALUE X-ORIGIN 'user defined' )
-
dn:cn=schem a
changetype: modify
delete: objectClasses
objectClasses: ( pkiSubsystem-oid NAME 'pkiSubsystem' DESC 'CMS defined
class' SUP top STRUCTURAL MUST ( cn $ Host $ SecurePort $ SubsystemName
$ Clone ) MAY ( Dom ainManager $ SecureAgentPort $ SecureAdminPort $
UnSecurePort ) X-ORIGIN 'user defined' )
-
add: objectClasses
objectClasses: ( pkiSubsystem-oid NAME 'pkiSubsystem' DESC 'CMS defined
class' SUP top STRUCTURAL MUST ( cn $ Host $ SecurePort $ SubsystemName
$ Clone ) MAY ( Dom ainManager $ SecureAgentPort $ SecureAdminPort
$SecureEEClientAuthPort $ UnSecurePort ) X-ORIGIN 'user defined' )
^C
b. Add the new port information to the security domain entry for this subsystem.
/usr/lib/mozldap/ldapmodify -p db_port -h db_host -D "cn=Directory
Manager" -w db_password
dn: cn=hostname:admin_port,cn=CAList,ou=Security Domain,dc=basedn
changetype: modify
add: SecureEEClientAuthPort
SecureEEClientAuthPort: new_port_number
^C
8.2. List of Known Issues in Red Hat Certificate System 8.0
These are known issues in the 8.0 release of Red Hat Certificate System. When available, workarounds
Red Hat Certificate System 8.0 Red Hat Certificate System 8.0
26