Hi @RichCampbell and @KevinD, in my lab I was able to obtain the subscription entitlement certificate without accessing Red Hat Customer Portal https://access.redhat.com. It was obtained directly from a registered RHEL endpoint. Then I used this certificate in my root server’s RHSM download plugin configuration. Obtain the certificate located here from the RHEL endpoint:
/etc/pki/entitlement
You should see 2 PEM files located here. Then I will combine these 2 files into 1 PEM file using the following command (my example certificate files are 1234567890123456789.pem and 1234567890123456789-key.pem):
cat /etc/pki/entitlement/1234567890123456789.pem /etc/pki/entitlement/1234567890123456789-key.pem > /tmp/1234567890123456789.pem
Then use the new combined file /tmp/1234567890123456789.pem in your RHSM download plugin configuration and I then validated via the command RHSMPlugin.exe --check-baserepos and inspected the output to confirm that the cert can access the base repos that are listed.
-Gus