Issue #8192: ipa-adtrust-install does not list service records for manual addition to DNS zone - freeipa

freeipa

#8192 ipa-adtrust-install does not list service records for manual addition to DNS zone

Closed: fixed 3 years ago by abbra. Opened 3 years ago by abbra.

Description of problem:
When executing ipa-adtrust-install on IPA server without configured DNS, there should be list of service records in command output which user should manually add to DNS zone. Actually this list is empty.

Version-Release number of selected component (if applicable):
ipa-server-trust-ad-4.7.1-7.module+el8+2555+b334d87b.x86_64

How reproducible:
Always

Steps to Reproduce:
1. dnf module enable -y idm:DL1/dns
2. dnf install -y ipa-server ipa-server-trust-ad
3. ipa-server-install -p Secret123 -a Secret123 -U -n master.test.ipa -r TEST.IPA
4. ipa-adtrust-install -a Secret123 -U

Actual results:

...
  [17/23]: adding special DNS service records
DNS management was not enabled at install time.
Add the following service records to your DNS server for DNS zone master.test.ipa: 
  [18/23]: restarting Directory Server to take MS PAC and LDAP plugins changes into account
...

Expected results:

...
  [17/23]: adding special DNS service records
DNS management was not enabled at install time.
Add the following service records to your DNS server for DNS zone master.test.ipa: 
_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.master.test.ipa. 86400 IN SRV 0 100 389 host-8-253-10.host.centralci.eng.rdu2.redhat.com.
_ldap._tcp.dc._msdcs.master.test.ipa. 86400 IN SRV 0 100 389 host-8-253-10.host.centralci.eng.rdu2.redhat.com.
_kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.master.test.ipa. 86400 IN SRV 0 100 88 host-8-253-10.host.centralci.eng.rdu2.redhat.com.
_kerberos._udp.Default-First-Site-Name._sites.dc._msdcs.master.test.ipa. 86400 IN SRV 0 100 88 host-8-253-10.host.centralci.eng.rdu2.redhat.com.
_kerberos._tcp.dc._msdcs.master.test.ipa. 86400 IN SRV 0 100 88 host-8-253-10.host.centralci.eng.rdu2.redhat.com.
_kerberos._udp.dc._msdcs.master.test.ipa. 86400 IN SRV 0 100 88 host-8-253-10.host.centralci.eng.rdu2.redhat.com.
  [18/23]: restarting Directory Server to take MS PAC and LDAP plugins changes into account
...

Additional info:
If I run ipa-adtrust-install second time I see the expected output

Metadata Update from @abbra:
- Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1665051

3 years ago

abbra commented 3 years ago

PR: https://github.com/freeipa/freeipa/pull/4221

abbra commented 3 years ago

master:

b3dbb36 adtrust: print DNS records for external DNS case after role is enabled

abbra commented 3 years ago

ipa-4-8:

936e27f adtrust: print DNS records for external DNS case after role is enabled

Metadata Update from @abbra:
- Issue close_status updated to: fixed
- Issue status updated to: Closed (was: Open)

3 years ago

Metadata

Assignee

abbra

Tags

None

Blocking

None

Depending on

None

Priority

None

Milestone

FreeIPA 4.8.5

None

affects_doc

None

source

None

knownissue

None

type

None

blockedby

None

test_case

None

component

None

blocking

None

on_review

None

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

https://bugzilla.redhat.com/show_bug.cgi?id=1665051

tester

None

changelog

None

design

None

freeipa

Source Code

#8192 ipa-adtrust-install does not list service records for manual addition to DNS zone Closed: fixed 3 years ago by abbra. Opened 3 years ago by abbra.

Metadata

#8192 ipa-adtrust-install does not list service records for manual addition to DNS zone

Closed: fixed 3 years ago by abbra. Opened 3 years ago by abbra.