> *From:* freeipa-users-boun...@redhat.com [mailto:
> freeipa-users-boun...@redhat.com] *On Behalf Of *Zeal Vora
> *Sent:* January-17-16 3:21 AM
> *To:* freeipa-users@redhat.com
> *Subject:* [Freeipa-users] Clients with Multi Master IPA replication
>
>
>
> Hi
>
>
&g
Hi
I have setup a multi-master IPA server.
I was wondering for IPA Client, which URL should we add in to ?
Should we setup a DNS entry with round robin ? But then if single Master
fails, the queries will still reach to it.
What is the ideal way to implement in such scenarios ?
Any help will
, David Kupka <dku...@redhat.com> wrote:
> On 25/01/16 12:08, Zeal Vora wrote:
>
>> Thanks Petr.
>>
>> So if the domain is example.com, in DNS, what would be the IP associated
>> with it ?
>>
>> As there are 2 master servers, each of them will have dif
Hi
I have setup a multi-master IPA and it seems to be working fine.
The clients ( laptops and servers ) are not using the DNS of IPA.
I was wondering, while configuring ipa-client, which server do I reference
to when it asks the ipa-server hostname ?
Both the master server has different
Thanks Petr.
So if the domain is example.com, in DNS, what would be the IP associated
with it ?
As there are 2 master servers, each of them will have different IP address.
On Mon, Jan 25, 2016 at 4:34 PM, Petr Spacek <pspa...@redhat.com> wrote:
> On 25.1.2016 10:47, Zeal Vora wrot
Hi!
I was planning to have a user who will have access to the below set of
permissions :-
1. kinit
2. ipa host-add
3. ipa-host-add-managedby
4. ipa-getkeytab
I was wondering on what would be the minimum required permission for this
user? I was planning to use specific user other then the
Hi
In our Internal VA, Vulnerability Assessment tools generates the HTTP TRACE
/ TRACK method in IPA as a medium based vulnerability.
Is there a need to allow those two methods in IPA ?
If not, what is the optimal way to disable those methods ?
Thanks,
Zeal
--
Manage your subscription for
