Leusmann, Philipp wrote:
rob,
I finally found out what’s wrong: The local files for crt and key already existed during
my tests. Obviously they are not being overwritten when stopping monitoring an old request
for the certificate and requesting a new one.
In result the post-save-command is not triggered.
When I delete at least the certificate, everything works as expected.
I think that’s odd behavior. Is that on purpose?
If certmonger finds a cert that matches the request it does a
start-tracking on it rather than requesting a new cert.
What about an expiry situation: Will the files be overwritten when
the certificate is close to expiry?
The cert will, yes.
How can I test the expiry situation? Is it possible to request a
certificate with very limited validity by using client arguments only? Or will I need to
edit the server ca profile?
Either edit the CA profile or use date to move time a couple of years
forward.
rob
Thanks for your great help!
Cheers,
Philipp
-----------------------------
CONET Solutions GmbH, Theodor-Heuss-Allee 19, 53773 Hennef.
Geschäftsführer/Managing Director: Dirk Lieder
Registergericht/Registration Court: Amtsgericht Siegburg (HRB Nr. 9136)
-----------------------------
Datenschutzhinweise:
https://www.conet.de/DE/conet/datenschutz
Diese E-Mail und etwa anhängende Dateien enthalten vertrauliche Informationen und sind
ausschließlich für den Adressaten bestimmt. Sollten Sie diese E-Mail irrtümlich erhalten
haben, informieren Sie uns hierüber bitte unter presse(a)conet.de und löschen Sie diese
E-Mail einschließlich etwa angehängter Dateien aus Ihrem System. Bitte beachten Sie, dass
die Weitergabe, Kopie und sonstige unautorisierte Nutzung der E-Mail und etwa angehängter
Dateien verboten sind. Vielen Dank.
This e-mail and any files transmitted with it are confidential and intended solely for
the use of the individual or entity to whom they are addressed. If you have received this
e-mail in error please notify presse(a)conet.de and delete this e-mail including attachments
from your system. Please note that any unauthorized review, copying, disclosing or other
use whatsoever are prohibited. Thank you.