> I generated a csr and private key (using openssl) and got it signed (using
> an internal authority).
>
> But which configuration files should be changed to reference my new
> certificate, cert chain and key?
>
> I've been fiddling with SSL directives in
> /etc/httpd/conf.d/05-foreman-ssl.conf but seem to be breaking more than I
> would like.
Passing your new cert, key, etc… as the arguments to the installer
would ensure all pieces work correctly. The installer is idempotent as
it's based on Puppet modules so it will apply the last configuration you
used PLUS the certificates.
You can also run the installer with the --noop option. This will just
display the changes it'll make without actually making any changes.
Passing your new cert, key, etc… as the arguments to the installer
would ensure all pieces work correctly. The installer is idempotent as
it’s based on Puppet modules so it will apply the last configuration you
used PLUS the certificates.
You can also run the installer with the --noop option. This will just
display the changes it’ll make without actually making any changes.