[Freeipa-users] Read Only LDAP Replicas
Prashant Bapat
prashant at apigee.com
Sat Dec 27 06:19:26 UTC 2014
Hi All,
I'm trying to implement FreeIPA for Users and SSH pub keys management in
our infra. We have a setup that spans multiple geographies. What we are
thinking is something like below.
1. Have 2 full FreeIPA servers with multi master replicas in one region.
2. In other regions just have a LDAP read-only replica.
3. Use the AuthorizedKeysCommand in SSH to look for a users pub key in the
respective region's LDAP.
Has anyone tried something on these lines?
Please share your experiences.
Thanks.
--Prashant
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20141227/93c13a92/attachment.htm>
More information about the Freeipa-users
mailing list