On ke, 01 elo 2018, Alfredo De Luca wrote:
Hi Alexander. yes I did.. these are all the options with client install
ipa-client-install --force-join --domain digit.test --server idm.digit.test
--realm MYTESTDOMAIN.IT --hostname ipa-repl.digit.test --mkhomedir -U
--principal admin --password <password>
and all went well. I can access the host with IPA users and so on....
What was the reason to force specifying --domain digit.test if your
realm is MYTESTDOMAIN.IT and primary DNS domain mytestdomain.it?
You should have used --domain mytestdomain.it in the first place.
According to the man page for ipa-client-install,
--domain=DOMAIN
The primary DNS domain of an existing IPA deployment, e.g.
example.com. This DNS domain should contain the SRV
records generated by the IPA server installer. Usually
the name is a lower-cased name of an IPA Kerberos realm
name.
--
/ Alexander Bokovoy
Sr. Principal Software Engineer
Security / Identity Management Engineering
Red Hat Limited, Finland
_______________________________________________
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/freeipa-users@lists.fedorahosted.org/message/SPCAEVWFBSU3TFB4FPKS6Q6LOEEIYRXT/
