The FMN email sender is refusing to connect because bastion's TLS cert has expired. It's apparently expired on May 29th and is issued by Digicert:
[root@bastion01 ~][PROD-IAD2]# openssl x509 -text -in /etc/pki/tls/private/gateway-chain.pem | head -n 15 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:5a:81:14:53:04:22:c2:8d:ac:06:90:f7:9b:54:01 Signature Algorithm: sha256WithRSAEncryption Issuer: C = US, O = DigiCert Inc, CN = DigiCert Global G2 TLS RSA SHA256 2020 CA1 Validity Not Before: May 26 00:00:00 2023 GMT Not After : May 28 23:59:59 2024 GMT Subject: C = US, ST = North Carolina, L = Raleigh, O = "Red Hat, Inc.", CN = bastion.fedoraproject.org
I didn't find anything about Digicert in our SOP, could someone with access renew this cert?
Thanks.
Metadata Update from @zlopez: - Issue priority set to: Waiting on Assignee (was: Needs Review) - Issue tagged with: high-gain, low-trouble, ops
Metadata Update from @kevin: - Issue assigned to kevin
I did renew this cert a while back before it expired.
However, I failed to make the pem file that has key/cert/intermediate that smtpd uses. ;(
So, created it and pushed it out.
Validity Not Before: May 8 00:00:00 2024 GMT Not After : May 30 23:59:59 2025 GMT
Metadata Update from @kevin: - Issue close_status updated to: Fixed with Explanation - Issue status updated to: Closed (was: Open)
Log in to comment on this ticket.