Issue #4606: ipa-client-install should detect AD domain - freeipa

freeipa

#4606 ipa-client-install should detect AD domain

Opened 9 years ago by pspacek. Modified 7 years ago

Current installation flow is:

ipa-client-install does IPA domain auto-detection using DNS by default.
Auto-detection fails because DNS configuration is broken OR there is a conflicting AD domain.
The script allows user to continue:

Autodiscovery of servers for failover cannot work with this configuration.
If you proceed with the installation, services will be configured to always access the discovered server for all operations and will not fail over to other servers in case of failure.
Proceed with fixed values and no DNS discovery? [no]: yes

I think that we can handle that better:

Detect AD and scream very loudly if AD is found instead of IPA
Say more clearly that it is a bad idea to continue installation if auto-detection doesn't work
Print information what ipa-client-install expected and didn't find (e.g. SRV records were not found etc.)

mkosek commented 9 years ago

Good idea, FreeIPA client should be more prepared that it may hit AD server.

Metadata Update from @pspacek:
- Issue assigned to someone
- Issue set to the milestone: FreeIPA 4.5 backlog

7 years ago

Metadata

Assignee

someone

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 4.5 backlog

None

affects_doc

None

source

None

knownissue

None

type

enhancement

blockedby

None

test_case

None

component

Client

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

todo

tester

None

changelog

None

design

None

freeipa

Source Code

#4606 ipa-client-install should detect AD domain Opened 9 years ago by pspacek. Modified 7 years ago

Close issue as:

Metadata

#4606 ipa-client-install should detect AD domain

Opened 9 years ago by pspacek. Modified 7 years ago