Polavarapu Manideep Sai via FreeIPA-users wrote: > Hi Team, > > > > Can we install IPA replica without using 80 port instead only using 443 > port? Is it possible ? > > > > If it is possible how can we achieve this ? [using port forwarding ? or > any configuration changes?] > > > > If it is not possible, why ?
Port 80 is necessary for OCSP and CRL processing. It is not likely to be used during replica install directly but the port is checked. I assume that the connection check is failing because this port isn't open. You can add --skip-conncheck to avoid it. I don't recommend closing the port though. Other than OCSP and CRL retrieval other IPA-related traffic will be redirected from port 80 to 443 by default. FWIW this subject is well-covered in list archives. rob -- _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
