[Freeipa-devel] DNS tests [from LinuxAlt 2013]
Petr Spacek
pspacek at redhat.com
Fri Nov 22 08:39:50 UTC 2013
On 22.11.2013 04:17, Jan Pazdziora wrote:
> On Fri, Nov 15, 2013 at 11:30:22AM -0600, Derek Moore wrote:
>> Is there an opportunity to also bring in OpenShift Origin, in particular
>> Broker, which also uses its own BIND with dyndb and/or nsupdate?
>
> Derek,
>
> is your interest getting OpenShift with IPA as DNS server set up, or
> getting OpenShift with IPA as DNS server tested?
>
> Looking at
>
> http://openshift.github.io/documentation/oo_deployment_guide_puppet.html#broker_dns_plugin
>
> the GSS-TSIG support that we contributed is still there so it should
> be usable with OpenShift Origin. I however currently hit some issues
> even plain installing Origin:
>
> https://bugzilla.redhat.com/show_bug.cgi?id=1027089
>
> But if you were able to overcome those issues, nsupdate with GSS-TSIG
> should just work.
>
> Just for the note, with OpenShift Enterprise 1.2.x the feature is
> there and working.
Jan, could you clarify if
https://www.openshift.com/content/please-provide-a-dns-server
calls for something else than FreeIPA integration? Do they mean plain DNS server?
Obviously, one option is to use plain DNS server and then somehow solve
multi-master environment (or use PowerDNS with replicated SQL backend and so on).
The other option is to use bind-dyndb-ldap with any standard-compliant LDAP
server, so OpenShift guys theoretically don't need full FreeIPA (if they want
plain DNS).
Thank you for clarification.
--
Petr^2 Spacek
More information about the Freeipa-devel
mailing list