So before I begin I should ask the following question to make sure I don’t keep wasting a lot of time:
Are there any Red Hat subscriptions that can NOT be used with the RHSN download plugin? For example: I have one called “Red Hat Enterprise Linux Developer Suite” which essentially just allows me to register about 100 virtual systems during the course of my testing and so on.
The reason I ask that question is because in the course of the last 8 hours or so I have read countless forum articles and posts whose screenshots don’t look like what I see in my subscription manager Portal on Redhat.
But when I get down to the part where I have to download the “identity certificate” I don’t see any such option on any of my Red Hat Subscription Portal pages.
And just like that I’ve tried several other guides to setting this up. I can only assume that I’m missing some key section of information because I refuse to believe that patching Red Hat on BigFix went from (literally) a two-step process using the old RHN to a 32-page booklet where you have to generate and import your own CA certificates.
I realize that RedHat was the one that changed the way they work, but I still think I’m missing something.
The one constant is that no matter what I do, in the RHSMPlugin.log, I always get the line:
DEBUG: key and cert for requested repo not found.
Below is a snippet from the latest log:
2017-02-06 23:42:38 : DEBUG : Key and cert for requested repo not found.
2017-02-06 23:42:38 : DEBUG : Handling download exception
Traceback (most recent call last):
File “util.py”, line 19, in retry_with_new_input
File “rhel\rheldownloader.py”, line 85, in download_with_key_cert
ValueError: SSL key is None
2017-02-06 23:42:38 : DEBUG : Key ‘None’, cert 'None’
2017-02-06 23:42:38 : INFO : Download failed. Will retry.
2017-02-06 23:42:38 : DEBUG : Getting URL for aHR0cHM6Ly9jZG4ucmVkaGF0LmNvbS9jb250ZW50L2Rpc3QvcmhlbC9jbGllbnQvNy83Q2xpZW50L3g4Nl82NC9vcmFjbGUtamF2YS9vcy8=, repodata/repomd.xml.
2017-02-06 23:42:38 : DEBUG : repo base: https://cdn.redhat.com/content/dist/rhel/client/7/7Client/x86_64/oracle-java/os/
2017-02-06 23:42:38 : DEBUG : Looking for certs in C:\Program Files (x86)\BigFix Enterprise\BES Server\DownloadPlugins\RHSMProtocol\certs
2017-02-06 23:42:38 : DEBUG : Found key C:\Program Files (x86)\BigFix Enterprise\BES Server\DownloadPlugins\RHSMProtocol\certs\cert_set_2\7136022195266283712-key.pem
2017-02-06 23:42:38 : DEBUG : Found cert C:\Program Files (x86)\BigFix Enterprise\BES Server\DownloadPlugins\RHSMProtocol\certs\cert_set_2\7136022195266283712.pem
2017-02-06 23:42:38 : DEBUG : Trying key: C:\Program Files (x86)\BigFix Enterprise\BES Server\DownloadPlugins\RHSMProtocol\certs\cert_set_2\7136022195266283712-key.pem, cert: C:\Program Files (x86)\BigFix Enterprise\BES Server\DownloadPlugins\RHSMProtocol\certs\cert_set_2\7136022195266283712.pem
2017-02-06 23:42:38 : DEBUG : Getting url https://cdn.redhat.com/content/dist/rhel/client/7/7Client/x86_64/oracle-java/os/repodata/repomd.xml.
2017-02-06 23:42:38 : DEBUG : Setting up SSL with cert ‘C:\Program Files (x86)\BigFix Enterprise\BES Server\DownloadPlugins\RHSMProtocol\certs\cert_set_2\7136022195266283712.pem’, key ‘C:\Program Files (x86)\BigFix Enterprise\BES Server\DownloadPlugins\RHSMProtocol\certs\cert_set_2\7136022195266283712-key.pem’.
2017-02-06 23:42:38 : DEBUG : Creating SSL context.
2017-02-06 23:42:38 : WARNING : Download failed with an exception for URL https://cdn.redhat.com/content/dist/rhel/client/7/7Client/x86_64/oracle-java/os/repodata/repomd.xml.
2017-02-06 23:42:38 : DEBUG : Exception
I’m open to suggestions at this point.