Created
September 16, 2014 19:40
-
-
Save chaosphere2112/89ee62d4d73632d7dd75 to your computer and use it in GitHub Desktop.
CentOS CA Certificate Fix
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
$ yum install ca-certificates | |
$ update-ca-trust enable | |
$ cp foo.crt /etc/pki/ca-trust/source/anchors/ | |
$ update-ca-trust extract |
Alternatively rather than force enabling you could install the missing packages: sudo yum install p11-kit.i686 p11-kit-trust.i686
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
If you are receiving this error message when running
update-ca-trust enable
:then you have something funky in your setup.
The script has what could be considered a bug; if you have 32-bit nss installed, but not 32-bit p11-kit, and you have 64-bit nss & p11-kit, it will spit out errors and quit, even though it can run just fine.
To check if what files you have installed, see what you get from these:
32-bit p11-kit:
64-bit p11-kit:
32-bit NSS:
64-bit NSS:
If you have either 32 or 64 bit of both P11-kit and NSS, you can successfully circumvent this issue by using
update-ca-trust force-enable
.update-ca-trust extract
should work just fine.