Plugins » Katello

I have created self-sign cert and tried to install it but while checking with katello-certs-check
I found that there are no entries for satellite-installer

As for my Sat 6.2, it shows all the entries for satellite-installer and with capsule-cert-generate.

[root@vm251-153 ~]# katello-certs-check -c root_ca/vm251-153.gsslab.pnq2.redhat.com.crt -k SSL-est/server.key -b root_ca/ca-chain.crt.pem
Checking server certificate's encoding: [OK]
Checking expiration of certificate: [OK]
Checking expiration of CA bundle: [OK]
Checking if server cert has CA:TRUE flag[OK]
Validating the certificate subject= /C=IN/ST=Maharashtra/L=Pune/O=redhat LTD/OU=satellite/emailAddress=root@localhost/CN=vm251-153.gsslab.pnq2.redhat.com
Checking to see if the private key matches the certificate: [OK]
Checking ca bundle against the cert file: [OK]
Checking Subject Alt Name on certificate[OK]
Checking Key Usage extension on certificate for Key Encipherment[OK]

Validation succeeded.

To use them inside a NEW $FOREMAN_PROXY, run this command:

capsule-certs-generate --foreman-proxy-fqdn "$FOREMAN_PROXY"\
                                   --certs-tar  "~/$FOREMAN_PROXY-certs.tar"\
                                   --server-cert "/root/root_ca/vm251-153.gsslab.pnq2.redhat.com.crt"\
                                   --server-key "/root/SSL-est/server.key"\
                                   --server-ca-cert "/root/root_ca/ca-chain.crt.pem"\

To use them inside an EXISTING $FOREMAN_PROXY, run this command INSTEAD:

capsule-certs-generate --foreman-proxy-fqdn "$FOREMAN_PROXY"\
                                   --certs-tar  "~/$FOREMAN_PROXY-certs.tar"\
                                   --server-cert "/root/root_ca/vm251-153.gsslab.pnq2.redhat.com.crt"\
                                   --server-key "/root/SSL-est/server.key"\
                                   --server-ca-cert "/root/root_ca/ca-chain.crt.pem"\
                                   --certs-update-server