Managing Secure Connections to the Subscription Server

CentOS Subscription Manager assumes, by default, that the subscription clients connect to the subscription service using a secure (SSL) connection. This requires that the CA certificate of the subscription service be downloaded and available locally for the client and that the appropriate connections be configured.

Open the Subscription Manager configuration file.

vim /etc/rhsm/rhsm.conf

Change the settings in the [server] section that relate to a secure connection. All parameters are described in Table 14.7, "rhsm.conf Parameters". There are three parameters directly related to the connection:
- insecure to set whether to use a secure (0) or insecure (1) connection
ca_cert_dir for the directory location for the CA certificate for authentication and verification
port for the subscription service port; this should be an SSL port if a secure connection is required

[server]
port=8443
insecure = 1
ca_cert = /etc/rhsm/ca