<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
On 01/12/2013 03:28 AM, Fred van Zwieten wrote:
<blockquote
cite="mid:CALVifsbJUsWiJwVocmifEUfjWX=TFnRh6PfXX2zE+34mfxDyqw@mail.gmail.com"
type="cite">
<div dir="ltr">Hi there,
<div><br>
</div>
<div>We are in the process of implementing Satellite and want to
automate server installations 100% using kickstart, cobbler,
satellite.</div>
<div><br>
</div>
<div>IPA clients can be scripted enrolled using kickstart.
Plenty of documentation about that.</div>
<div><br>
</div>
<div>However, how to "re"-enroll IPA clients?</div>
<div><br>
</div>
<div>Satellite gives me the option to re-install a server. In
this case, there are still host and possibly service records
for this host present in IPA and DNS.</div>
<div><br>
</div>
<div style="">One way to think about this is, that it's actually
OK to keep those records there, because it is a
"re"-installation, so why remove and re-enroll? However, there
is the krb5.keytab in /etc. I could save that file during
redeployment, but I'm not sure if that will work. And iare
there any other gotcha's.</div>
<div style=""><br>
</div>
<div style="">So, the question is, how to re-install an IPA
client using kickstart (silent re-install)?</div>
</div>
</blockquote>
<br>
The question is how/do you remove the client?<br>
Based on what you say above you use the same system so there are
some leftovers. If you can run ipa-client-install --uninstall it
should clean things like keytab and certs (there have been bugs
fixed in freeIPA 3.0). If the client has access to the server it
will clean (not remove) the host entry too. Then you can re-run the
install. If you use OTP you would need to reset OTP first.<br>
<br>
<blockquote
cite="mid:CALVifsbJUsWiJwVocmifEUfjWX=TFnRh6PfXX2zE+34mfxDyqw@mail.gmail.com"
type="cite">
<div dir="ltr">
<div>
<div><br>
Regards,<br>
<div><br>
</div>
</div>
<div style="">Fred</div>
</div>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Freeipa-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Freeipa-users@redhat.com">Freeipa-users@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/freeipa-users">https://www.redhat.com/mailman/listinfo/freeipa-users</a></pre>
</blockquote>
<br>
<br>
<pre class="moz-signature" cols="72">--
Thank you,
Dmitri Pal
Sr. Engineering Manager for IdM portfolio
Red Hat Inc.
-------------------------------
Looking to carve out IT costs?
<a class="moz-txt-link-abbreviated" href="http://www.redhat.com/carveoutcosts/">www.redhat.com/carveoutcosts/</a>
</pre>
</body>
</html>