[Freeipa-devel] terminology: "main/primary/? DNS domain" for FreeIPA
Petr Spacek
pspacek at redhat.com
Thu Oct 22 07:32:09 UTC 2015
On 8.10.2015 20:55, Simo Sorce wrote:
> On 08/10/15 09:34, Petr Spacek wrote:
>> Hello list,
>>
>> I'm in process of reviewing and fixing some of our docs and it seems that we
>> do not have established term for The Domain user specified during
>> ipa-server-install.
>>
>> Term "DNS domain" is not specific enough because FreeIPA can manage multiple
>> DNS domains but only one of them contains SRV records. Term "IdM domain"
>> sounds too vague for the same reasons.
>
> We should make it easy to publish SRV records on any domain, if a client is in
> a different DNS domain it should still be able to discover the IPA servers.
That should be unnecessary once we fix
https://fedorahosted.org/freeipa/ticket/5270
ipa-client-install should use _kerberos record for IPA domain auto-detection
(FreeIPA by default adds _kerberos TXT record to all DNS domains managed by
FreeIPA-integrated DNS.)
--
Petr^2 Spacek
More information about the Freeipa-devel
mailing list