Thanks - very helpful
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: htt
Thanks
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproj
The basic technology is solid and the admin tools reasonable. However it has
the same problems as all large, integrated systems: if the system isn’t in
exactly the state they expect, significant administrative operations such as
upgrading version or adding a replica will fail. Those things are d
Hi,
Duncan Colhoun via FreeIPA-users
writes:
> Can I get some feedback on the overall experience setting up and
> running Free-IPA. I am looking at implementing Free-IPA to
> enhance/replace an OpenLDAP environment.
I'm running a small FreeIPA (2 servers) installation in a family
network. Inst
Hi Angus
Thanks for the feedback
___
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Main gripe (which doesn't have any plans for resolution) - no facility for
read-only replicas in untrusted sites.
On 8 May 2018 at 12:04, Angus Clarke wrote:
> Hi Duncan
>
> A few things I've learned:
>
> Understand how replication agreements work as part of your planning.
>
> Choose a suitable
Hi Duncan
A few things I've learned:
Understand how replication agreements work as part of your planning.
Choose a suitable location for the live CA server.
Deploy a replica by promoting an sssd client. Unless you have a reason not
to, always use --setup-ca to the ipa-replica-install command to