freeipa

Clone
Source Code
GIT

a6eb87b server-del: perform full master removal in managed topology

6 files Authored by mbabinsk 7 years ago, Committed by mbasti 7 years ago,
raw patch tree parent
6 files changed. 434 lines added. 6 lines removed.
API.txt
file modified
+4 -1
VERSION
file modified
+2 -2
ipaclient/plugins/server.py
file added
+17
ipalib/errors.py
file modified
+18 -0
ipalib/messages.py
file modified
+16 -1
ipaserver/plugins/server.py
file modified
+377 -2 
    server-del: perform full master removal in managed topology
    
    This patch implements most of the del_master_managed() functionality as a part
    of `server-del` command.
    
    `server-del` nows performs these actions:
      * check topology connectivity
      * check that at least one CA/DNS server and DNSSec masters are left
        after removal
      * cleanup all LDAP entries/attributes exposing information about the master
      * cleanup master DNS records
      * remove master and service principals
      * remove master entry from LDAP
      * check that all segments pointing to the master were removed
    
      `server-del` now accepts the following options:
      * `--force`: force master removal even if it doesn't exist
      * `--ignore-topology-disconnect`: ignore errors arising from disconnected
        topology before and after master removal
      * `--ignore-last-of-role`: remove master even if it is last DNS server,
        and DNSSec key master. The last CA will *not* be removed regardless of
        this option.
    
    https://fedorahosted.org/freeipa/ticket/5588
    
    Reviewed-By: Martin Basti <mbasti@redhat.com>
file modified
+4 -1
file modified
+2 -2
file added
+17
file modified
+18 -0
file modified
+16 -1
file modified
+377 -2
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.