On 07/16/2014 02:34 PM, Choudhury, Suhail wrote:
I'd like some clarification on what a "master" and "replica" is please.
Once installed, all masters are identical (except some might have a CA
and some not).
The distinction is useful when installing a replica, where "master" and
"replica" generally mean "existing master" and "new master", respectively.
This doc suggests you start with 1 master and a replica can be promoted
to a master by changing "/var/lib/pki-ca/conf/CS.cfg":
That doc is ancient (Fedora 15), don't use it.
However IPA is supposed to be multi-master replication, and replication
agreements appears to be two ways when checking "ipa-replica-manage list
hostname" on a given IPA server.
So when creating a replica using:
ipa-replica-install --setup-ca --setup-dns --forwarder=172.20.220.25
am I creating another "master replica"?
Yes, you're creating a new master; since you gave --setup-ca the two
masters will be equivalent.
Manage your subscription for the Freeipa-users mailing list:
Go To http://freeipa.org for more info on the project