[Freeipa-users] Replication for sites not using FreeIPA for DNS?
Dmitri Pal
dpal at redhat.com
Wed Jan 18 17:30:30 UTC 2012
On 01/18/2012 12:17 PM, Ian Levesque wrote:
> Hello,
>
> I'm running IPA version 2.1.3-9 on RHEL 6.2 and just configured master/master replication. From what I can tell in the documentation [1], all of the client-discovering-a-replica magic happens via SRV records in DNS. This is quite different from what I'm used to, coming from managing an Open Directory service in which the replicated server's FQDN is passed on to the client through LDAP as an additional LDAP/KDC server to add to the client's local config.
>
> My question is how can I take advantage of replication if we're not using the FreeIPA-blessed DNS server? Do I need to manually tweak the SSSD config to make it aware of a second LDAP/KDC server? Is there a hidden flag I can pass ipa-client-install to do this for me?
>
The answer is in the today thread called "Forcing IPA clients to
prioritise different IPA Servers". See comment from Stephen Gallagher.
He describes what to set in the SSSD config explicitly to identify the
servers that will be used.
> Thanks for any insight!
> Ian
>
>
> --
> [1] http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html-single/Identity_Management_Guide/index.html#ipa-servers-replicas
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users
--
Thank you,
Dmitri Pal
Sr. Engineering Manager IPA project,
Red Hat Inc.
-------------------------------
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
More information about the Freeipa-users
mailing list