Issue #5657: ipa-advise config-redhat-nss-ldap does not enable use of DNS SRV record (= single point of failure) - freeipa

freeipa

#5657 ipa-advise config-redhat-nss-ldap does not enable use of DNS SRV record (= single point of failure)

Opened 8 years ago by pspacek. Modified 7 years ago

After executing commands produced by ipa-advise config-redhat-nss-ldap command the file /etc/ldap.conf hardcodes LDAP URI instead of using DNS SRV records:

uri ldap://vm-058-103.abc.idm.lab.eng.brq.redhat.com

The uri line should be replaced with nss_srv_domain:

_ldap._tcp.<ipa domain>

It seems that similar problem is in config-redhat-nss-ldapd config at least.

Metadata Update from @pspacek:
- Issue assigned to someone
- Issue set to the milestone: FreeIPA 4.5 backlog

7 years ago

Metadata

Assignee

someone

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 4.5 backlog

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

Client

blocking

None

on_review

keywords

easyfix

test_coverage

None

reviewer

None

external_tracker

None

rhbz

tester

None

changelog

None

design

None

freeipa

Source Code

#5657 ipa-advise config-redhat-nss-ldap does not enable use of DNS SRV record (= single point of failure) Opened 8 years ago by pspacek. Modified 7 years ago

Close issue as:

Metadata

#5657 ipa-advise config-redhat-nss-ldap does not enable use of DNS SRV record (= single point of failure)

Opened 8 years ago by pspacek. Modified 7 years ago