On Wed, 2015-03-04 at 15:29 +0000, Roderick Johnstone wrote: > >> 4) I'm not sure about this one. Things seem to work at the moment. Is > >> this again about managing the records more easily when we bring on line > >> replica servers? > > > > It is only about ease of use indeed, if you manage your servers > > manually, and keep them properly up to date, all should be fine. > > Simo > > Can you clarify really what freeipa is doing with the DNS please.
Automatically add/remove replicas are added/removed in SRV records. Allows secure updates from clients. Allows fine grained delegation of DNS management. > Is it just about maintaining the SRV records for the server replicas, > assuming we have our hosts already in an external (to freeipa) DNS? Not only but this is one of the important things. > Does it change the priority in the SRV records as replicas come and go? Not yet. > Is there more to it than this? See above. HTH, Simo. -- Simo Sorce * Red Hat, Inc * New York -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project