After executing commands produced by ipa-advise config-redhat-nss-ldap command the file /etc/ldap.conf hardcodes LDAP URI instead of using DNS SRV records:
ipa-advise config-redhat-nss-ldap
/etc/ldap.conf
uri ldap://vm-058-103.abc.idm.lab.eng.brq.redhat.com
The uri line should be replaced with nss_srv_domain:
uri
nss_srv_domain
_ldap._tcp.<ipa domain>
It seems that similar problem is in config-redhat-nss-ldapd config at least.
config-redhat-nss-ldapd
Metadata Update from @pspacek: - Issue assigned to someone - Issue set to the milestone: FreeIPA 4.5 backlog
Login to comment on this ticket.