When IPA replica is installed and the master machine record is not in ~/.ssh/known_hosts, ipa-replica-install will prompt user to answer a question about adding a host to this file:
~/.ssh/known_hosts
# ipa-replica-install /home/mkosek/replica-info-vm-046.idm.lab.bos.redhat.com.gpg Directory Manager (existing master) password: Run connection check to master Check connection from replica to remote master 'vm-096.idm.lab.bos.redhat.com': Directory Service: unsecure port (389): OK Directory Service: secure port (636): OK Kerberos (88): OK PKI-CA: Directory Service (7389): OK PKI-CA: EE Secure port (9444): OK PKI-CA: Admin Secure port (9445): OK PKI-CA: EE Secure Client Auth port (9446): OK PKI-CA: Unsecure port (9180): OK Connection from replica to master is OK. Start listening on required ports for remote master check Get credentials to log in to remote master Password for admin@IDM.LAB.BOS.REDHAT.COM: Execute check on remote master The authenticity of host 'vm-096.idm.lab.bos.redhat.com (10.16.78.96)' can't be established. RSA key fingerprint is 46:cd:43:c2:23:27:62:ab:79:eb:bc:27:62:e6:88:a6. Are you sure you want to continue connecting (yes/no)?
This could, however, break tests. ipa-replica-conncheck should not require any further user interaction when all mandatory options are filled.
master: ab098ad
Metadata Update from @mkosek: - Issue assigned to mkosek - Issue set to the milestone: FreeIPA 2.1 - 2011/06
Login to comment on this ticket.