Project

General

Profile

Actions
Copy link

Feature #16317

open

Download oVirt/RHEL CA cert from HTTP handshake rather than from API

Added by Lukas Zapletal over 7 years ago. Updated almost 7 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Compute resources - oVirt
Target version:
-
Difficulty:
Triaged:
Bugzilla link:
Pull request:
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Description

Please take into account that both the old and new endpoints return the certificate of the CA that was created when the RHV/oVirt engine was installed. But the RHV/oVirt administrator may later replace the certificates, specially the web server certificate, see [1]. If that happens the CA certificate obtained from those endpoints won't work to connect to the engine. I'd suggest that you take the certificate directly from the SSL handshake, that will always work.

[1] https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Virtualization/3.6/html/Administration_Guide/appe-Red_Hat_Enterprise_Virtualization_and_SSL.html)

Related issues 1 (0 open1 closed)

Related to Foreman - Bug #15163: Use new oVirt CA cert endpointClosedLukas Zapletal05/24/2016Actions
Actions
Copy link
 #1

Updated by Lukas Zapletal over 7 years ago

  • Related to Bug #15163: Use new oVirt CA cert endpoint added
Actions
Copy link

Also available in: Atom PDF