TCP is overall a better fit for IPA. But with OTP using UDP is likely to cause timeouts, spurious failures and lockouts. FreeIPA should default to using TCP first and fall back to using UDP.
Yes, ipa-client-install should update krb5.conf on the client to prefer TCP.
Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=919228 (Red Hat Enterprise Linux 7)
4.1.2 was released.
The original closed SSSD ticket that started this effort: https://fedorahosted.org/sssd/ticket/914
Metadata Update from @npmccallum:
- Issue assigned to npmccallum
- Issue set to the milestone: FreeIPA 4.1.3
to comment on this ticket.