[Freeipa-users] using wildcard or other external CA certs
Simo Sorce
simo at redhat.com
Wed Jan 23 21:34:13 UTC 2013
On Wed, 2013-01-23 at 13:45 -0700, Orion Poplawski wrote:
> On 01/23/2013 01:43 PM, Dmitri Pal wrote:
> > Yes please. Let us do it on the user list.
> >
> > Ticket URL:<https://fedorahosted.org/freeipa/ticket/3360#comment:14>
>
> So, my goal in using a wildcard cert signed by a "well known" CA was to be
> able to avoid installing the IPA CA in clients like Thunderbird and Firefox.
> Thoughts, comments, suggestions?
Sharing the same cert key between many machines is never a good idea.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Freeipa-users
mailing list