freeipa

Clone
Source Code
GIT

08dad8f Configure affinity during server installation

2 files Authored by rcritten 7 months ago, Committed by frenaud 7 months ago,
raw patch tree parent
2 files changed. 57 lines added. 10 lines removed.
ipaserver/install/server/replicainstall.py
file modified
+52 -10
ipaserver/masters.py
file modified
+5 -0 
    Configure affinity during server installation
    
    Write a new krb5.conf in case any values changed finding the
    right server to configure against (e.g. for CA, KRA) and
    ensure the API connection is to the remote server that
    will be installed against.
    
    When finding a CA or KRA during initial replica installation
    set the remote master as well. The order is:
    
     - existing server value in /etc/ipa/default.conf
     - the chosen CA host if the server doesn't provide one
     - the chosen KRA host if the server doesn't provide one
    
    This is more or less heirarchical. If a server is provided
    then that is considered first. If it provides all the
    optional services needed (CA and/or KRA) then it will
    be used. Otherwise it will fall back to a server that provides
    all the required services.
    
    In short, providing --server either at client install or
    with ipa-replica-install is no guarantee that it will
    define all topology. This may be unexpected behavior.
    
    For the case of adding a CA or KRA things are effectively
    unchanged. This type of install does not appear to be
    impacted by affinity issues.
    
    Fixes: https://pagure.io/freeipa/issue/9289
    
    Signed-off-by: Rob Crittenden <rcritten@redhat.com>
    Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
    Reviewed-By: Florence Blanc-Renaud <flo@redhat.com>
file modified
+52 -10
file modified
+5 -0
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.