My Favorites

Close

Please to see your favorites.


CA management on SMT 11 failed with DNS names starting with a number

This document (7004411) is provided subject to the disclaimer at the end of this document.

Environment

SUSE Linux Enterprise Server 11
Subscription Management Tool 11

Situation

While trying to setup SMT11 the creation of the root CA fails with an error message like:

ValueException:-1:Wrong LiteralValue for type 'DNS': 192-21-184-126-dynip.provider.com

Resolution

This issue has been fixed as of SLES11SP1 (package: limal-ca-mgm, version: 1.5.22-0.2.15.x86_64.rpm).

Workaround:
Use the YaST2 CA management module to create the CA manually.

Steps to create a root CA and a common server certificate

Create root CA:
  1. Start as root 'yast2 ca_mgm' from a console
  2. If no CA exists click on 'Create Root CA'
  3. Choose a CA and common name for this certificate
  4. Enter the email address of the issuer and optional information such as organization, unit, locality, state and country
  5. press next
  6. Choose the password, length of the key and its validity
  7. Press next to see an overview about the CA
  8. Press create to create the CA
Create server certificate:
  1. Select the CA in the YaST2 CA management module
  2. Press "Enter CA"
  3. Enter the password
  4. Click on Certificates
  5. Click on Add
  6. Choose Server Certificate
  7. Provide the requested data
  8. Press next
  9. Here it is possible to either use the CA password for the server certificate or a different one. Also key lengt and validity may be changed.
  10. Press next to get to an overview and
  11. press create to create the server certificate
Export certificate as common server certificate:
  1. On the certificates tab locate the "Export" button and
  2. select "Export as common server certificate"
  3. Enter the password that was chosen (either for the CA or for the server certificate)
  4. A message "Certificate has been written as common server certificate" should be seen

Disclaimer

This Support Knowledgebase provides a valuable tool for NetIQ/Novell/SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.

  • Document ID:7004411
  • Creation Date:09-SEP-09
  • Modified Date:27-APR-12
    • SUSESubscription Management Tool
      SUSE Linux Enterprise Server

Did this document solve your problem? Provide Feedback