On 3/16/21 2:49 PM, Mark Potter via FreeIPA-users wrote:
I have a working FreeIPA cluster and need to start deploying for other
geolocations. I deployed with freeipa-ansible. While I can find docs on
multi-master setups I am struggling to find the initial setup bits.
Would it be best to deploy a new cluster without any knowledge of the
existing cluster and setup replication post-install or is it possible to
just add the hosts as `ipaserver` and `ipareplicas` to the inventory and
rerun the playbook?
Hi,
it is not possible to merge a new cluster with an existing one. Your new
replicas have to be defined from the start as replicas, but there are
multiple options depending on your desired topology. It's explained in
this section
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/installing_identity_management/installing-an-identity-management-replica-using-an-ansible-playbook_installing-identity-management#specifying-the-base-server-and-client-variables-for-installing-the-IdM-replica_replica-ansible
- you can rely on auto-discovery to find a server with which the initial
replication will be configured
- you can specify a server for all the replicas (this will create a star
topology)
- you can specify a different server for each replica
HTH,
flo
I am looking for the best way to set this up without risk to the current
environment. I apologize if I've missed something relatively simple in
the docs.
--
*Mark Potter*
Senior Linux Administrator
DownUnder GeoSolutions
16200 Park Row Drive, Suite 100
Houston TX 77084, USA
tel +1 832 582 3221
[email protected] <mailto:[email protected]>
www.dug.com <http://www.dug.com/>
_______________________________________________
FreeIPA-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/[email protected]
Do not reply to spam on the list, report it:
https://pagure.io/fedora-infrastructure
_______________________________________________
FreeIPA-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/[email protected]
Do not reply to spam on the list, report it:
https://pagure.io/fedora-infrastructure
