Hi, On 7.3.2016 12:47, Martin Babinsky wrote: > https://fedorahosted.org/freeipa/ticket/5696 Shouldn't we rather fix IPA to work with bind running in chroot (which is AFAIK considered good security practice)? Honza -- Jan Cholasta