The DNS installer (both ipa-dns-install and ipa-replica-install --setup-dns) creates DNS records only for the replica it is installed on, but not for any other existing replicas. This breaks replication and other things. DNS records for all existing replicas should be created when DNS is first installed (i.e. when the DNS container is created).
Also, forward records for all existing CA replicas should be added to ipa-ca.<domain>.
Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=952689
63e79a3 Add ipa-ca records for existing CA masters when installing DNS f 014f296 Add DNS records for existing masters when installing DNS for the
Metadata Update from @jcholast: - Issue assigned to jcholast - Issue set to the milestone: FreeIPA 3.2 - 2013/04-05 (GA)
Login to comment on this ticket.