TCP is overall a better fit for IPA. But with OTP using UDP is likely to cause timeouts, spurious failures and lockouts. FreeIPA should default to using TCP first and fall back to using UDP.
Yes, ipa-client-install should update krb5.conf on the client to prefer TCP.
https://www.redhat.com/archives/freeipa-devel/2014-November/msg00098.html
Linked to Bugzilla bug: https://bugzilla.redhat.com/show_bug.cgi?id=919228 (Red Hat Enterprise Linux 7)
4.1.2 was released.
The original closed SSSD ticket that started this effort: https://fedorahosted.org/sssd/ticket/914
master:
ipa-4-1:
Metadata Update from @npmccallum: - Issue assigned to npmccallum - Issue set to the milestone: FreeIPA 4.1.3
Log in to comment on this ticket.