[Freeipa-users] Using IPA on Two Completely Different Domains

[Alexander Bokovoy]

On Thu, 17 Oct 2013, Trevor T Kates (Services - 6) wrote:
>Greetings,
>
>I’m looking for some advice with respect to implementing an IPA
>solution on two different domains. Both domains have names that are
>completely distinct from each other and are out of my control to
>change. I have IdM 3.0 under CentOS 6.4 supporting one domain and I’d
>like to put together another IdM instance for the other domain. There
>is some overlap of users between the two domains. As such, I was
>wondering if the best solution would be to just treat the domains as
>completely distinct and manage the IdM instances separately or if there
>is a way to link them together such that for the users that overlap,
>modifications only need to be made once and in one place.
Can you put machines from both DNS domains into the same IPA domain?
Is there a need to physically separate the information between the two?

It is OK for IPA to have machines in different DNS domains.

-- 
/ Alexander Bokovoy