You are here

Resolution: ULN-CA-CERT to be Updated With SHA-2 Certificates on December 15, 2016

By Roddy Rodstein 02/17/2017
This post is applicable to Oracle Linux 5 and 6, and Oracle VM 2, and 3.

At the end of 2016 several SSL certificate vendors started phasing out SHA-1 type CA certificates in favor of SHA-2 CA certificates. This issue impacted Oracle Linux systems that connect to the Unbreakable Linux Network (ULN). As of December 15, 2016 ULN clients SSL CA certificates must be updated to be able to continue receiving updates from ULN. 

The next example shows how to correct Oracle Linux 6:
Access your Oracle Linux 6 host as root
Change to the desired directory to pull down the RPMs, i.e. cd /tmp
Next...
wget https://public-yum.oracle.com/repo/OracleLinux/OL6/latest/x86_64/getPack... --no-check-certificate
wget https://public-yum.oracle.com/repo/OracleLinux/OL6/latest/x86_64/getPack... --no-check-certificate
wget https://public-yum.oracle.com/repo/OracleLinux/OL6/latest/x86_64/getPack... --no-check-certificate
rpm -U rhn-setup-1.0.0.1-38.0.6.el6.noarch.rpm rhn-client-tools-1.0.0.1-38.0.6.el6.noarch.rpm rhn-check-1.0.0.1-38.0.6.el6.noarch.rpm
 
Now you'll be able to use yum, and connect to the Unbreakable Linux Network.