On Fri, Oct 19, 2018 at 09:55:39AM -0400, Ralph Crongeyer via FreeIPA-users
wrote:
> We are trying to combine services and servers into FreeIPA. We have
> opanldap for ldap, and a stand alone FreeIPA for CA / certs, this stand
> alone has the DNS component installed, which we don't want to use in
Should I recommend to check the DNS configuration on the servers/clients?
Also, (careful, I might be wrong here), I don't think that you need to install
DNS on the replica server. I am not sure what is broken though.
Can you give us an example?
___
We are trying to combine services and servers into FreeIPA. We have
opanldap for ldap, and a stand alone FreeIPA for CA / certs, this stand
alone has the DNS component installed, which we don't want to use in our
new environment. We want to migrate the old CA and openladp to a new
FreeIPA cluster.
On Thu, Oct 18, 2018 at 10:00:20AM -0400, Ralph Crongeyer via FreeIPA-users
wrote:
> Hi Fraser,
> Actually my goal would be to have two identical stand alone servers. For
> instance maybe add a server as a replica and then separate them from each
> other, or maybe export the CA's and issued certs
Hi Fraser,
Actually my goal would be to have two identical stand alone servers. For
instance maybe add a server as a replica and then separate them from each
other, or maybe export the CA's and issued certs and then import them to a
new server.But I'm not sure how to do either of those.
I did try
On Tue, Oct 16, 2018 at 01:23:11PM -0400, Ralph Crongeyer via FreeIPA-users
wrote:
> Hello,
> I have a FreeIPA server that is currently running as a CA only, no clients
> connect, no LDAP entries have ever been made, no DNS etc... The original
> ipa CA is how it was setup during the initial