On Feb 20, 2018, 7:19 PM -0500, Fraser Tweedale <ftweedal@redhat.com>, wrote:

On Tue, Feb 20, 2018 at 12:41:17PM -0500, Bret Wortman via FreeIPA-users wrote:

I'll give that a try.

If you "Clear Recent History" for the domain, ensuring that "Remove
Offline Data" is selected, I think that might do the trick. It's
something like that, anyhow.

Or choose a different CA Subject DN, as was already suggested.

Cheers,
Fraser

On 02/20/2018 12:38 PM, Jochen Hein wrote:

Bret Wortman via FreeIPA-users <freeipa-users@lists.fedorahosted.org
writes:

Sequence of events in trying to stand up a new IPA server to replace
(wholesale) our old ones.

...

3. # ipa-server-install --setup-dns --auto-reverse --no-forwarders
...

And now I'm back where I was. IPA is running and contains our user,
host, and DNS data (plus others) from the original hosts but I can't
connect to it using firefox. Any other possible solutions to this
problem?

We're using the same realm & network name, and we have to do that.
I'd try with another CA subject, see
https://blog.delouw.ch/2015/11/29/setting-up-ipa-with-a-specific-ca-cert-subject/
for details.

Jochen

_______________________________________________
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org