On Mon, Jun 27, 2016 at 1:16 AM, Matt Haught <dmhaught@ncsu.edu> wrote:

On Fri, Jun 24, 2016 at 2:58 PM, Martin Perina <mperina@redhat.com> wrote:
>
>
> This is not a correct solution although it's working for now. Correct steps are described at [1].
>
> Thanks
>
> Martin Perina
>
> [1] https://bugzilla.redhat.com/show_bug.cgi?id=1336838
>

So I followed the bug report and put my CA cert into
/etc/pki/ca-trust/source/anchors/ and ran update-ca-trust. I created a
/etc/ovirt-engine/engine.conf.d/99-custom-truststore.conf as shown,
but after restarting ovirt-engine I got

Keystore was tampered with, or password was incorrect

when trying to log in. So I ended up doing a

keytool -storepasswd -keystore /etc/pki/ca-trust/extracted/java/cacerts

using "changeit" and set a password and put that in
99-custom-truststore.conf . Things appear to be working now.

Unfortunately we have a bug there and it will be fixed in oVirt 4.0.1. Until then we support only truststores with password.

Sorry for your troubles.

Martin Perina

Thanks,

Matt Haught
_______________________________________________
Users mailing list
Users@ovirt.org
http://lists.ovirt.org/mailman/listinfo/users