Hi Justin,

   I was trying to reproduce this but I think I am missing some steps.
   Do you mind reviewing my testcase to check what is missing ?
   The test case  is :
   install master M, prepare replica (+copy of gpg), install replica
   (new master) R.
   On R:

     * Authenticate as 'admin'
     * 'ipa user-add <user>'
     * ipa user-del --preserve <user>

   On M:

     * Authenticate as 'admin'
     * ipa user-find --preserved=true  <--- here the preserved <user>
       is found

   Is it similar to what you tested ?


On 02/27/2016 06:20 AM, Justin Bushey wrote:

I've noticed that when creating a new IPA master users that are set to be Preserved after deletion are not being replicated to the new master. I haven't been able to experiment much with this since I'm working in our production environment, but I did notice that if I restore them as active users and re-initialize the new master I can then move them to the 'Preserved' category. This change is replicated.

I'm setting up the new master in the normal manner:

On existing master:
ipa-replica-prepare --ip-address x.x.x.x replica.domain.com <http://replica.domain.com>

And then using ipa-replica-install on the new master:

ipa-replica-install --setup-dns --setup-ca --no-reverse --forwarder x.x.x.x --forwarder x.x.x.x --ip-address=x.x.x.x replica-info-replica.domain.com.gpg

I'm just wondering if there's something I'm doing wrong, if this is by design, or if this is an actual bug.


Justin M. Bushey
Systems Administrator
InfoRelay Online Systems, Inc.

Manage your subscription for the Freeipa-users mailing list:
Go to http://freeipa.org for more info on the project

Reply via email to