I have an existing Katello 2.7 server which I'd like to add a wildcard
certificate to. I've generated the key and CSR using openssl. The signed
certificate is from DigiCert. I attempted to update the certificate using :
The install completed without error, however, the SmartProxy has this error:
ERF12-5356 [ProxyAPI::ProxyException]: Unable to get PuppetCA certificates
([OpenSSL::SSL::SSLError]: SSL_connect returned=1 errno=0 state=SSLv3 read
server certificate B: certificate verif…) for proxy
rescue in all' lib/proxy_api/puppetca.rb:45:inall'
and my nodes/hosts cannot run - presumably because of the above error. I
have a snapshot of this VM so I can go back to Self-Signed, but I'd prefer
to use a signed cert.