[Freeipa-users] Existing clients join new cluster
Ash Alam
aalam at paperlesspost.com
Wed Mar 9 23:27:52 UTC 2016
Hello
I am looking for some advice on how to make my existing clients join a new
ipa cluster. We have an existing cluster (3.0) and after several attempts
at upgrading we decided to just build fresh cluster (4.2) We now want the
clients join the new cluster. It seems there are few things that tie the
clients.
- /var/lib/ipa-client/sysrestore
- /etc/ipa/ca.crt
- certutil -L -d /etc/pki/nssdb/
- certutil delete the IPA CA cert (which is fully trusted CT, C, C)
- certutil delete the machine specific certificate
Even with all of this its not clean and i am running into other issues. I
am hoping there is a better way.
Thank You
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20160309/237c8ac3/attachment.htm>
More information about the Freeipa-users
mailing list