[Spacewalk-list] RedHat repository certificate issue

[Boyd, Robert]

I discovered a partial answer to my question:

spacewalk-report repositories

will dump out all of the certificates registered to Spacewalk.

Now I'm investigating what's different between the old and the current CA certificates.



From: spacewalk-list-bounces at redhat.com [mailto:spacewalk-list-bounces at redhat.com] On Behalf Of Boyd, Robert
Sent: Tuesday, December 08, 2015 3:53 PM
To: spacewalk-list at redhat.com
Subject: [Spacewalk-list] RedHat repository certificate issue


I'm having a problem with repo-sync which we've narrowed down with tcpdump/wireshark to see that my spacewalk server is rejecting the SSL CA cert from the remote end(at Red Hat) because it is failing to verify as having a valid signing authority.   I'm assuming that I need to re-load the certificate into spacewalk, but I'd like to compare the certificate that cdn.redhat.com is sending now to the one that I previously loaded in spacewalk.   Is this possible?

I'm currently running spacewalk 2.2 on RHEL6

How can I list the certificates I have loaded in spacewalk already?  On the repository details page I can see the names I assigned to them in the drop down lists for ssl ca cert and so forth.   Is there somewhere in the GUI that I can examine these names and the files/keys they are associated with?  Or is there some way with the command line tools to do that?

Thanks,

Robert Boyd

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/spacewalk-list/attachments/20151208/0e51f469/attachment.htm>