Ubuntu
certmonger package

dogtag-ipa-renew-agent-submit on freeipa-client fails to find pwdfile.txt

Bug #1875227 reported by Marco van Zwetselaar
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
certmonger (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

Since upgrade to 20.04, these two lines are logged every 6 hours on my FreeIPA client machines:

    Running enrollment/cadata helper "/usr/lib/certmonger/dogtag-ipa-renew-agent-submit".
    Error opening "/etc/apache2/nssdb/pwdfile.txt": No such file or directory.

It appears to be looking for pwdfile.txt in the wrong directory. There is a pwdfile.txt in /etc/ipa/nssdb.

As I could not find a way to configure dogtag-ipa-renew-agent-submit (its man page only mentions the host property in /etc/ipa/default.conf), I have symlinked /etc/ipa/nssdb to /etc/apache2/nssdb as a temporary workaround.

Tags: focal
Revision history for this message
Timo Aaltonen (tjaalton) wrote :

it's useful only on an ipa server which does have /etc/apache2/nssdb

dunno if it makes sense to split the package to ship the server bits separately

affects: freeipa (Ubuntu) → certmonger (Ubuntu)
Changed in certmonger (Ubuntu):
status: New → Confirmed
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.