[ovirt-users] 3.6 to 4.0 upgrade cert issue
Martin Perina
mperina at redhat.com
Tue Jun 28 14:01:18 UTC 2016
On Mon, Jun 27, 2016 at 1:16 AM, Matt Haught <dmhaught at ncsu.edu> wrote:
> On Fri, Jun 24, 2016 at 2:58 PM, Martin Perina <mperina at redhat.com> wrote:
> >
> >
> > This is not a correct solution although it's working for now. Correct
> steps are described at [1].
> >
> > Thanks
> >
> > Martin Perina
> >
> > [1] https://bugzilla.redhat.com/show_bug.cgi?id=1336838
> >
>
> So I followed the bug report and put my CA cert into
> /etc/pki/ca-trust/source/anchors/ and ran update-ca-trust. I created a
> /etc/ovirt-engine/engine.conf.d/99-custom-truststore.conf as shown,
> but after restarting ovirt-engine I got
>
> Keystore was tampered with, or password was incorrect
>
> when trying to log in. So I ended up doing a
>
> keytool -storepasswd -keystore /etc/pki/ca-trust/extracted/java/cacerts
>
> using "changeit" and set a password and put that in
> 99-custom-truststore.conf . Things appear to be working now.
>
Unfortunately we have a bug there and it will be fixed in oVirt 4.0.1.
Until then we support only truststores with password.
Sorry for your troubles.
Martin Perina
>
> Thanks,
>
> Matt Haught
> _______________________________________________
> Users mailing list
> Users at ovirt.org
> http://lists.ovirt.org/mailman/listinfo/users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ovirt.org/pipermail/users/attachments/20160628/b7c1f23f/attachment-0001.html>
More information about the Users
mailing list