When user is about to enable DNSSEC validation, possibly after upgrade from older FreeIPA versions, it would be nice for them to have a way to check the forwarders have DNSSEC enabled and meet the same validation as during fresh FreeIPA installation. Possibly some small utility script which would run exactly the same checks as fresh installation and adding forwarder via API do.
Metadata Update from @adelton:
- Issue assigned to someone
- Issue set to the milestone: FreeIPA 4.5 backlog
to comment on this ticket.