Problem:
When running the foreman installer using the katello scenario, we are encountering the following error when trying to run the installer.
2022-02-13 14:41:10 [ERROR ] [configure] /Stage[main]/Certs::Ca/Ca[katello-default-ca]/ensure: change from 'absent' to 'present' failed: Execution of '/bin/katello-ssl-tool --gen-ca --dir /root/ssl-build -p file:/etc/pki/katello/private/katello-default-ca.pwd --force --ca-cert-dir /etc/pki/katello-certs-tools/certs --set-common-name foreman.mgmt.ccslabs.xyz --ca-cert katello-default-ca.crt --ca-key katello-default-ca.key --ca-cert-rpm katello-default-ca --set-country US --set-state North Carolina --set-city Raleigh --set-org Katello --set-org-unit SomeOrgUnit --set-email --cert-expiration 36500' returned 10: ERROR: Certificate Authority private SSL key generation failed:
I looked for any installer options that could indicate a way to specify a cipher suite, but I am unable to find an installer option.
Expected outcome:
Installer to generate certificates on a FIPS enabled system.
Foreman and Proxy versions:
foreman and foreman-proxy 3.0.1
Foreman and Proxy plugin versions:
katello 4.22
Distribution and version:
Rocky Linux 8.5