On 01/18/2012 12:17 PM, Ian Levesque wrote:
> Hello,
>
> I'm running IPA version 2.1.3-9 on RHEL 6.2 and just configured master/master 
> replication. From what I can tell in the documentation [1], all of the 
> client-discovering-a-replica magic happens via SRV records in DNS. This is 
> quite different from what I'm used to, coming from managing an Open Directory 
> service in which the replicated server's FQDN is passed on to the client 
> through LDAP as an additional LDAP/KDC server to add to the client's local 
> config.
>
> My question is how can I take advantage of replication if we're not using the 
> FreeIPA-blessed DNS server? Do I need to manually tweak the SSSD config to 
> make it aware of a second LDAP/KDC server? Is there a hidden flag I can pass 
> ipa-client-install to do this for me?
>

The answer is in the today thread called "Forcing IPA clients to
prioritise different IPA Servers". See comment from Stephen Gallagher.
He describes what to set in the SSSD config explicitly to identify the
servers that will be used. 

> Thanks for any insight!
> Ian
>
>
> --
> [1] 
> http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html-single/Identity_Management_Guide/index.html#ipa-servers-replicas
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users@redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users


-- 
Thank you,
Dmitri Pal

Sr. Engineering Manager IPA project,
Red Hat Inc.


-------------------------------
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/



_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

Reply via email to