getcert list vs ipa cert-find

Posted on


I am using the Ansible role linux-system-roles.certificate to create a certificate for a service principal for a host defined in an IDM (ver 4.9.2) instance running on RHEL8. The value for the ca: key is ipa (as opposed to self-sign).

I can see the certificate using getcert list but ipa cert-find (and the web console) has no record of the certificate.

What is the difference between the 2 commands? How can I automate the creation of the certificate and have it appear on the web console, and in the output of ipa cert-find?