I've recently hit again the situation of IPA installer not happy
about the provided IP address not being local to it, this time in
containerized environment:


During the discussion, we came to an interesting question:

        What would break if loopback addresses were allowed for IPA

Of course, the idea is that it would only be used for installation and
then IPA would change its IP address in DNS to whatever is the real IP
address under which it is accessible.

Where does the allow_loopback=False requirement in the installer come
from and what would break if it was removed altogether?


Jan Pazdziora
Senior Principal Software Engineer, Identity Management Engineering, Red Hat

Manage your subscription for the Freeipa-devel mailing list:
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code

Reply via email to