Hi All, I'm trying to implement FreeIPA for Users and SSH pub keys management in our infra. We have a setup that spans multiple geographies. What we are thinking is something like below.
1. Have 2 full FreeIPA servers with multi master replicas in one region. 2. In other regions just have a LDAP read-only replica. 3. Use the AuthorizedKeysCommand in SSH to look for a users pub key in the respective region's LDAP. Has anyone tried something on these lines? Please share your experiences. Thanks. --Prashant
-- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project