[Freeipa-users] Registering Amazon Linux instance remotely
Yogesh Sharma
yks0000 at gmail.com
Sat Aug 22 17:45:24 UTC 2015
FreeIPA in Amazon Linux is a pain as they donot support, we have also
raised a feature request with Amazon Linux and as per them it will be
available in next amazon linux release though no ETA yet.
Per your concern, it seems your script is able to register the client but
cocern here is only to add client in specfic IPA hostgroup, if so then you
can add automember rules in ipa server. You donot need to worry about it at
the time of enrolling, if automember rule is their it will land in specific
hostgroup based on your regex which you have specified.
On your concern, about running the script remotely, its better to add your
script in User Data, so that it will be executed automatically once your
instance get provisioned or use any cms tool like chef, puppet to do this.
Also, it recommeded to use private ip instead of public ip or eip as they
are static, though depends on your use case.
-Yogesh Sharma
(Sent from my HTC)
On 22-Aug-2015 10:03 pm, "NitrouZ" <dewanggaba at xtremenitro.org> wrote:
> Hello!
>
> Have you assign security groups to your ipa server and client? By default,
> Amazon will accept only ssh (port 22) and icmp.
>
> And if you want static public IP address, go to Elastic IP and assign each
> of them to your vm's.
>
> Hope it helps :)
>
> On Saturday, August 22, 2015, Supratik Goswami <supratiksekhar at gmail.com>
> wrote:
>
>> Hello,
>>
>> My environment is completely in Amazon AWS and in my environment I have a
>> FreeIPA setup 4.1.0-18.el7.
>> I am using auto scaling feature of Amazon AWS which dynamically creats
>> systems from a AMI.
>> The currently running machines in that group are Amazon Linux. I can not
>> install ipa-client in
>> those machines because Amazon does not support that yet but I have
>> installed SSSD in those
>> machines.
>>
>> The IP's of the machines are dynamically assigned at the time of the
>> launch. I want to run a setup
>> script at the time of launch and register the client machines.
>>
>> Unfortunately I don't have any clue of what commands I should use to
>> register the client machine
>> remotely under a particular host group at the time of launch.
>>
>> Please help. Thanks.
>>
>> --
>> Warm Regards
>>
>> Supratik
>>
>
>
> --
> Sent from iDewangga Device
>
> --
> Manage your subscription for the Freeipa-users mailing list:
> https://www.redhat.com/mailman/listinfo/freeipa-users
> Go to http://freeipa.org for more info on the project
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20150822/465636cb/attachment.htm>
More information about the Freeipa-users
mailing list