Sandor Juhasz via FreeIPA-users wrote:
Hi,
we are running freeipa server 4.6.5.
Facing the issue, where the ocsp responder in the Server-Cert is set
to
Name: Authority Information Access
Method: PKIX Online Certificate Status Protocol
Location:
URI: "http://ipa-ca.bpo.cxn/ca/ocsp"
Where the hosts cert's subject is
Subject: "CN=ipa14.bpo.cxn,O=CXN"
I have added DNS alias for the given machine, but the httpd shows only
cert for the subject, but cannot add the ocsp. Tried with certutil, with
ipa-getcert, but i was not
able to add the alias to the given cert.
Is there a way to fix this?
I'm unclear what you are trying to do. You want the OCSP AVA to point to
a specific host? If so, for what reason?
rob