Hello,
I am looking at using FreeIPA without CA, using external signed certificates, reading the
documentations it looks possible using —dirsrv-certfile, —http-cert-file and
—point-certfile. Should I just create a CSR for the hostname by by hand and get it signed?
Also is there any good reason for having different certs for http, ldap and pkinit? Can I
just use one certificate for all services and for all servers and replicas using Subject
Alternative Names?
Regards
Henrik
Show replies by date