Thanks, useful tip......though I assume most sites will also use DNS and NTP....
Technical Specialist - Linux RHCE
Victoria University, Wellington, NZ
0064 4 463 6272
In terms of your firewall rules, you only want to allow access on port
389 for your hosts. It's also worth noting that because SSSD clients
bind with their host entry, you can also opt to disable anonymous access
to the FreeIPA LDAP server for added security.
Freeipa-users mailing list