Hi all,

this one will be my first patch submission, so apologies in advance if I make mistakes...


The man page for ipa-replica-install was missing some commands related to CA-less installation, as well as --allow-zone-overlap and --auto-reverse. I added them in the relevant sections (CERTIFICATE SYSTEM OPTIONS and DNS OPTIONS).

I also fixed a wrong short option for --realm (-r).

Fixes: https://fedorahosted.org/freeipa/ticket/5835

From e2ec0bb1570caec67df58d259be63ac7191e24b0 Mon Sep 17 00:00:00 2001
From: Florence Blanc-Renaud <fren...@redhat.com>
Date: Fri, 20 May 2016 12:09:06 +0200
Subject: [PATCH] Add missing CA options to the manpage for ipa-replica-install

CA-less options were missing, as well as --allow-zone-overlap
and --auto-reverse.
Fix short option for --realm which was displayed as -d instead of -r.

https://fedorahosted.org/freeipa/ticket/5835
---
 install/tools/man/ipa-replica-install.1 | 35 ++++++++++++++++++++++++++++++++-
 1 file changed, 34 insertions(+), 1 deletion(-)

diff --git a/install/tools/man/ipa-replica-install.1 b/install/tools/man/ipa-replica-install.1
index 0e9f51a645afeac63b0c87418cd1468db951c4ef..55bae2cb77e1a1c520e0598983b8939a919a9ee9 100644
--- a/install/tools/man/ipa-replica-install.1
+++ b/install/tools/man/ipa-replica-install.1
@@ -69,7 +69,7 @@ The fully qualified domain name of the IPA server to enroll to.
 \fB\-n\fR, \fB\-\-domain\fR=\fIDOMAIN\fR
 Set the domain name to DOMAIN.
 .TP
-\fB\-d\fR, \fB\-\-realm\fR=\fIREALM_NAME\fR
+\fB\-r\fR, \fB\-\-realm\fR=\fIREALM_NAME\fR
 Set the IPA realm name to REALM_NAME.
 .TP
 \fB\-\-hostname\fR
@@ -128,6 +128,33 @@ certificate operations will be forwarded to a master with a CA installed.
 \fB\-\-no\-pkinit\fR
 Disables pkinit setup steps
 .TP
+\fB\-\-dirsrv\-cert\-file\fR=FILE
+File containing the Directory Server SSL certificate and private key
+.TP
+\fB\-\-http\-cert\-file\fR=FILE
+File containing the Apache Server SSL certificate and private key
+.TP
+\fB\-\-pkinit\-cert\-file\fR=FILE
+File containing the Kerberos KDC SSL certificate and private key
+.TP
+\fB\-\-dirsrv\-pin\fR=PIN
+The password to unlock the Directory Server private key
+.TP
+\fB\-\-http\-pin\fR=PIN
+The password to unlock the Apache Server private key
+.TP
+\fB\-\-pkinit\-pin\fR=PIN
+The password to unlock the Kerberos KDC private key
+.TP
+\fB\-\-dirsrv\-cert\-name\fR=NAME
+Name of the Directory Server SSL certificate to install
+.TP
+\fB\-\-http\-cert\-name\fR=NAME
+Name of the Apache Server SSL certificate to install
+.TP
+\fB\-\-pkinit\-cert\-name\fR=NAME
+Name of the Kerberos KDC SSL certificate to install
+.TP
 \fB\-\-skip\-schema\-check\fR
 Skip check for updated CA DS schema on the remote master
 
@@ -161,6 +188,12 @@ The reverse DNS zone to use. This option can be used multiple times to specify m
 \fB\-\-no\-reverse\fR
 Do not create new reverse DNS zone. If a reverse DNS zone already exists for the subnet, it will be used.
 .TP
+\fB\-\-auto-reverse\fR
+Create necessary reverse zones
+.TP
+\fB\-\-allow-zone-overlap\fR
+Create DNS zone even if it already exists
+.TP
 \fB\-\-no\-host\-dns\fR
 Do not use DNS for hostname lookup during installation
 .TP
-- 
2.5.5

-- 
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code

Reply via email to