As an admin I do not only want to list the system records that should be created with dns-update-system-records, especially if the DNS is remote (eg. on AD), I want a tool that will automatically check if all the records that should be there, are there - on all listed DNS servers, eventually with the option to skip the locally listed DNS servers (resolv.conf).
I had the issue that the AD admins removed the DNS records and nobody noticed, until some "strange" issue appeared. I already guessed that the DNS records could be affected and checked them. However, since there are some to check, I though eventually there is a subcommand like dns-check-system-records, analogous to dns-update-system-records. Unfortunately, that is not the case.
Subcommand non-existing.
Easy way to check all records on all DNS servers.
n/a
This was a customer case; If you want me to create some RHBZ and link the customer case as well, please let me know.
Reverse linking RHBZ#1695125: https://bugzilla.redhat.com/show_bug.cgi?id=1695125
Metadata Update from @rcritten: - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1695125
Issue linked to Bugzilla: Bug 1695125
Metadata Update from @rcritten: - Issue tagged with: healthcheck
Hi! I'm reaching out to you to know if this is something that can be implemented any time soon!? Regards, Oliver
It is most likely to be implemented as part of freeipa-healthcheck and not as a new command within IPA. Timeline TBD.
Hi @rcritten !
I guess you mean this one: https://github.com/freeipa/freeipa-healthcheck ?
Shall I carry over this issue to GitHub?
@oliver
You can if you'd like but it isn't necessary. We pull ideas from both.
Cross-link: https://github.com/freeipa/freeipa-healthcheck/pull/80
Closing as fixed, the check has been implemented in freeipa-healthcheck
Metadata Update from @frenaud: - Issue close_status updated to: fixed - Issue status updated to: Closed (was: Open)
Login to comment on this ticket.