Cache installer questions for the 2-step process of an externally-signed CA

Installing a CA that is signed by another CA is a 2-step process. The first
step is to generate a CSR for the CA and the second step is to install
the certificate issued by the external CA. To avoid asking questions
over and over (and potentially getting different answers) the answers
are cached.

1 files changed, 2 insertions, 1 deletions

diff --git a/ipaserver/install/cainstance.py b/ipaserver/install/cainstance.py
index d07e58295..7a50d3538 100644
--- a/ipaserver/install/cainstance.py
+++ b/ipaserver/install/cainstance.py
@@ -604,7 +604,8 @@ class CAInstance(service.Service):
             ipautil.run(args)
 
             if self.external == 1:
-                print "The next step is to get %s signed by your CA and re-run ipa-server-install" % self.csr_file
+                print "The next step is to get %s signed by your CA and re-run ipa-server-install as:" % self.csr_file
+                print "ipa-server-install --ca --external_cert_file=/path/to/signed_certificate --external_ca_file=/path/to/external_ca_certificate"
                 sys.exit(0)
 
             # pkisilent doesn't return 1 on error so look at the output of