No. The AIA section is for certificate distribution only. It's used if the client cannot build a valid certificate chain with it's current information. In that case it needs an insecure connection, or a secure connection that the client can build a certificate chain for, to be able to download the CA. You cannot use a certificate you don't have to establish a secure connection for downloading that same certificate. -Patrick Hibbs On Wed, 2022-05-11 at 15:41 +0000, louisb@ameritech.net wrote:
I started to investigate based on your question regarding a secure connection. From that investigation this what I’ve found:
When viewing he certificate the AIA section shows the following:
Authority Info (AIA) Location: http://ovirtdl380gen10.cscd.net:80/ovirt-engine/services/pki-resource?resource=ca-certificate&format=X509-PEM-CA
Method: CA Issuers
It appears that the certificate is being issue/released on port 80, could this be the reason no connection can be established with the “ovirt imageio” service; since the service is looking for a connection on a secured port such as 443?
How can or what should be done to correct this. If this is the issue I suspect that I need to have a certificate that is from port 443 or some other secured connection.
Thanks _______________________________________________ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-leave@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/2C3FIPZEZ4HQ63...