If you have the A record in DNS but not the reverse ipa-replica-prepare fails to install even if you provide the --ip-address option.
I see a few issues in the way the address is checked.
First we should give verify_fqdn specific exception and not parse the text of a generic error message. That is a bit gross, and is what is making stuff fail here because we get back "Unable to resolve the reverse ip address, check [...]" while we expect "Unable to resolve host name". But in general relying on parsing error strings seems wrong, this code will break if in future we want to internationalize error messages.
Second when an --ip-address is passed and we do have DNS installed we should probably simply override what's in the DNS (perhaps in interactive mode warn and ask for confimration that we will change an actual existing record if the A record currently in DNs does not match).
I think we should fix this a tthe first occasion after 2.1.2, not wait till 3.0
master: 5b968f9[[BR]] ipa-2-1: 526a399
Metadata Update from @simo: - Issue assigned to mkosek - Issue set to the milestone: FreeIPA 2.1.2 (bug fixing)
Login to comment on this ticket.