I am bringing up a katello/foreman/puppet server and I have a hard
requirement by my organization that self-signed SSL certificates are not
allowed for web servers. The currently approved certificate is a wildcard
cert for which I do not have the csr. I've been through this group and
found several messages on how to install a commercial certificate for the
web interface while leaving all other certificates untouched. These
instructions are somewhat contradictory and none have worked for me. Does
anybody have an authoritative answer on how to install a commercial
wildcard certificate for the web interface that does not break puppet?
I'm running Katello 3.4.5, Foreman 1.15.4, and puppet 4.10.8 under CentOS
7.4
Of limited help I suspect but I can confirm that as a Satellite user I'm
able to use a commercial certificate and I also don't have a CSR (where is
asked for the CSR, create an empty file).
ยทยทยท
On Friday, October 6, 2017 at 6:09:39 AM UTC-4, Doug O wrote:
>
> Hello,
>
> I am bringing up a katello/foreman/puppet server and I have a hard
> requirement by my organization that self-signed SSL certificates are not
> allowed for web servers. The currently approved certificate is a wildcard
> cert for which I do not have the csr. I've been through this group and
> found several messages on how to install a commercial certificate for the
> web interface while leaving all other certificates untouched. These
> instructions are somewhat contradictory and none have worked for me. Does
> anybody have an authoritative answer on how to install a commercial
> wildcard certificate for the web interface that does not break puppet?
>
> I'm running Katello 3.4.5, Foreman 1.15.4, and puppet 4.10.8 under CentOS
> 7.4
>
> Thanks,
>
> Doug
>
