On 12/12/12 09:09, rashard.ke...@sita.aero wrote:
> What are the disadvantages of using an external DNS source? My three
> options are install DNS services on the IPA server, use the local Active
> Directory DNS, or connect to a linux based DNS appliance. Is it common
> not to use DNS at all if so what are the drawbacks?
> 
> My goal is consolidating all local administration of users to a
> centralized place in our environment. I have been reading the
> documentation and the mailing list archives, forgive me If I have
> overlooked this answer.
> 
> Thanks,
> Rashard
> 
> 
> 
> 
> This document is strictly confidential and intended only for use by the
> addressee unless otherwise stated. If you are not the intended
> recipient, please notify the sender immediately and delete it from your
> system.
> 
> 
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users@redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users
> 

You are going to lose out on some of the slicker integration features
like putting SSHFP records in place for hosts, as well as automatic
population when a host joins/leaves.

However, other than that, I don't believe you lose much. I have been
managing DNS separately via named from day one. In fact, though I
haven't checked on this recently, I don't believe IPA support DNSSEC
which I am running, so I am obliged to run my DNS separately.

-Erinn

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

Reply via email to