[Users] Specifying values for cert, key, and CA for ovirt-shell

Sven Kieske S.Kieske at mittwald.de
Thu Jan 9 03:19:39 EST 2014


Hi,

the short way of getting the correct certificate to connect to the
engine, is downloading it using wget/curl/browser from the server
itself:

the url is:

https://your_fqdn/ca.crt

connect with this as "ca_file = /path/where/you/downloaded/ca.crt

should work (always did for me).

another way to start is without any ovirtshellrc, simply invoking:

ovirt-shell

you get a disconnected shell, then connect via:

connect --url https://your-fqdn/api --username admin at internal --password
--ca-file /path/to/ca.crt


HTH

Am 08.01.2014 23:08, schrieb Bob Doolittle:

> Something must be different about our setups. This is where I started.
> 
> In both cases, either "insecure = True" or when I specify the ca_file
> only, I get:
> error: [401] - Unauthorized, HTTP Status 401
> 
> The one difference is that you are using "ca_file = /root/ca.crt"
> whereas I am using "ca_file = ca.pem".
> 
> I can't seem to find any .crt files in the /etc/pki/ovirt-engine area
> (or, for that matter, in the /etc/pki/vdsm area on the node).
> 
> Thanks,
>    Bob
> 
> 
> _______________________________________________
> Users mailing list
> Users at ovirt.org
> http://lists.ovirt.org/mailman/listinfo/users
> 
> 
> 

-- 
Mit freundlichen Grüßen / Regards

Sven Kieske

Systemadministrator
Mittwald CM Service GmbH & Co. KG
Königsberger Straße 6
32339 Espelkamp
T: +49-5772-293-100
F: +49-5772-293-333
https://www.mittwald.de
Geschäftsführer: Robert Meyer
St.Nr.: 331/5721/1033, USt-IdNr.: DE814773217, HRA 6640, AG Bad Oeynhausen
Komplementärin: Robert Meyer Verwaltungs GmbH, HRB 13260, AG Bad Oeynhausen


More information about the Users mailing list