As FreeIPA administrator in an IT company, I want to deploy a replica of my FreeIPA server.
Record name is missing for all related entries to my replica server, in the DNS zone, within the WebUI.
Records type and data are well displayed.
But if I "dig" from the CLI i get the good information...
I guess this is a display issue.
No records name associated to every replica server data
The records related to the replica should be fully displayed
FreeIPA server: $ rpm -q freeipa-server freeipa-client ipa-server ipa-client 389-ds-base pki-ca krb5-server ipa-server-4.6.4-10.el7.centos.6.x86_64 ipa-client-4.6.4-10.el7.centos.6.x86_64 ipa-server-4.6.4-10.el7.centos.6.x86_64 ipa-client-4.6.4-10.el7.centos.6.x86_64 389-ds-base-1.3.8.4-25.1.el7_6.x86_64 pki-ca-10.5.9-13.el7_6.noarch krb5-server-1.15.1-37.el7_6.x86_64
FreeIPA replica: $ rpm -q freeipa-server freeipa-client ipa-server ipa-client 389-ds-base pki-ca krb5-server ipa-server-4.6.4-10.el7.centos.6.x86_64 ipa-client-4.6.4-10.el7.centos.6.x86_64 ipa-server-4.6.4-10.el7.centos.6.x86_64 ipa-client-4.6.4-10.el7.centos.6.x86_64 389-ds-base-1.3.8.4-25.1.el7_6.x86_64 pki-ca-10.5.9-13.el7_6.noarch krb5-server-1.15.1-37.el7_6.x86_64
CLI with dig is working: dig @<my_ipa_server_ip> NS <my_ipa_domain> +short ipareplica.<my_ipa_domain>. ipa.<my_ipa_domain>.
To avoid making assumptions can you provide the list of records that are missing? It isn't clear to me what you are expecting.
Sure, see the attachment. Sorry for my bad english (I am French). The attachment shows that the first column is never filled when the entry is about the replica server (have a look for the IP 10.0.0.8). My replica server is 10.0.0.8
<img alt="dnszone.png" src="/freeipa/issue/raw/files/443a0c962b15fdea928aec25a0ad0a7ef4ed5dd5178926f920002ee7597bd657-dnszone.png" />
An element in the first column is placed against a record. The record can contain multiple values and they all listed in that line and lines after that until the next 'first column' filled line which designates another record.
So I can see your replica in all SRV records (except related to trust controller records which end with msdcs because your replica is most likely not a trust controller). Also, ipaca points to both master and replica.
My understanding is that 'ipareplica' record entry is most likely on a separate page. Did you look there?
You are right! And it makes sense now. I didn't take a look at the bottom of the page where I could go to the second page and there it is, my ipareplica A entry with the IP 10.0.0.8 is present. Thank you very much fo your fast answer, so no issue you can close this one! All the best PS: indeed I didn't enroll my replica as a trust controller yet. My today task...
Metadata Update from @abbra: - Issue close_status updated to: worksforme - Issue status updated to: Closed (was: Open)
Login to comment on this ticket.