#8068 Web UI is missing record name of all IPA replica related entries in dns zone
Closed: worksforme 4 years ago by abbra. Opened 4 years ago by slamy.

Request for enhancement

As FreeIPA administrator in an IT company, I want to deploy a replica of my FreeIPA server.

Issue

Record name is missing for all related entries to my replica server, in the DNS zone, within the WebUI.

Records type and data are well displayed.

But if I "dig" from the CLI i get the good information...

I guess this is a display issue.

Steps to Reproduce

  1. Install a replica with ipa-replica-install
  2. Login to the FreeIPA server Web UI
  3. Go to /dnszone/records/<your_domain.com>
  4. Look for your ipa replica records

Actual behavior

No records name associated to every replica server data

Expected behavior

The records related to the replica should be fully displayed

Version/Release/Distribution

FreeIPA server:
$ rpm -q freeipa-server freeipa-client ipa-server ipa-client 389-ds-base pki-ca krb5-server
ipa-server-4.6.4-10.el7.centos.6.x86_64
ipa-client-4.6.4-10.el7.centos.6.x86_64
ipa-server-4.6.4-10.el7.centos.6.x86_64
ipa-client-4.6.4-10.el7.centos.6.x86_64
389-ds-base-1.3.8.4-25.1.el7_6.x86_64
pki-ca-10.5.9-13.el7_6.noarch
krb5-server-1.15.1-37.el7_6.x86_64

FreeIPA replica:
$ rpm -q freeipa-server freeipa-client ipa-server ipa-client 389-ds-base pki-ca krb5-server
ipa-server-4.6.4-10.el7.centos.6.x86_64
ipa-client-4.6.4-10.el7.centos.6.x86_64
ipa-server-4.6.4-10.el7.centos.6.x86_64
ipa-client-4.6.4-10.el7.centos.6.x86_64
389-ds-base-1.3.8.4-25.1.el7_6.x86_64
pki-ca-10.5.9-13.el7_6.noarch
krb5-server-1.15.1-37.el7_6.x86_64

Additional info:

CLI with dig is working:
dig @<my_ipa_server_ip> NS <my_ipa_domain> +short
ipareplica.<my_ipa_domain>.
ipa.<my_ipa_domain>.


To avoid making assumptions can you provide the list of records that are missing? It isn't clear to me what you are expecting.

Sure, see the attachment. Sorry for my bad english (I am French).
The attachment shows that the first column is never filled when the entry is about the replica server (have a look for the IP 10.0.0.8). My replica server is 10.0.0.8

dnszone.png

An element in the first column is placed against a record. The record can contain multiple values and they all listed in that line and lines after that until the next 'first column' filled line which designates another record.

So I can see your replica in all SRV records (except related to trust controller records which end with msdcs because your replica is most likely not a trust controller). Also, ipaca points to both master and replica.

My understanding is that 'ipareplica' record entry is most likely on a separate page. Did you look there?

You are right! And it makes sense now. I didn't take a look at the bottom of the page where I could go to the second page and there it is, my ipareplica A entry with the IP 10.0.0.8 is present.
Thank you very much fo your fast answer, so no issue you can close this one!
All the best
PS: indeed I didn't enroll my replica as a trust controller yet. My today task...

Metadata Update from @abbra:
- Issue close_status updated to: worksforme
- Issue status updated to: Closed (was: Open)

4 years ago

Login to comment on this ticket.

Metadata
Attachments 1
Attached 4 years ago View Comment