If I understand your question, you want to specify 
—domain=example.com<http://example.com> in ipa-client-install. 
/etc/sssd/sssd.conf

After installation you can fix it. Make sure

the DNS entry for example.com<http://example.com> has all the SRV records

/etc/sssd/sssd.conf
ipa_domain is set
dns_discovery_domain is set if needed
no explicit ipa server name is set

/etc/krb5.conf
in the realm section,
default_domain is set
no explicit hostnames are given except admin_server. You can list all of them 
on separate lines.


On Nov 3, 2017, at 11:31:18 AM, Andrew Meyer via FreeIPA-users 
<freeipa-users@lists.fedorahosted.org<mailto:freeipa-users@lists.fedorahosted.org>>
 wrote:

If I have a server that is in a subdomain of my tld for FreeIPA and I want it 
to get added into that specific zone during the client install process, the 
installer errors out and says that it will only recognize 1 FreeIPA server and 
failover to the other will not be possible.  Is there some way around this?  
Something I can change in the /etc/sssd/sssd.conf ?

Domain is example.com<http://example.com>

my new server is 
server123.mgt.datacenter.example.com<http://server123.mgt.datacenter.example.com>

I have the zones created but I don't see the kerberos records in there.

Thank you!
_______________________________________________
FreeIPA-users mailing list -- 
freeipa-users@lists.fedorahosted.org<mailto:freeipa-users@lists.fedorahosted.org>
To unsubscribe send an email to 
freeipa-users-le...@lists.fedorahosted.org<mailto:freeipa-users-le...@lists.fedorahosted.org>

_______________________________________________
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org

Reply via email to