Hi,
if you want to install a RHEL8 or RHEL9 server with the same domain name,
the recommended procedure would be to install a RHEL8 replica from your
RHEL7 server, then a RHEL9 replica from your RHEL8 server.
You can check this documentation:
- Migrating your IdM environment from RHEL 7 servers to RHEL 8 servers
[1]
- Migrating your IdM environment from RHEL 8 servers to RHEL 9 servers
[2]
ipa migrate-ds is used when the new domain name is different from the old
one and does not migrate all the data (only users and groups are migrated,
not HBAC rules, sudo rules etc...). On the contrary, installation of a
replica does not lose any data. And you don't need to worry about the SIDs.
HTH,
flo
[1]
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/...
[2]
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/...
On Tue, May 9, 2023 at 2:35 PM Finn Fysj via FreeIPA-users <
freeipa-users(a)lists.fedorahosted.org> wrote:
Thank you for replying to me,
Florence.
I'm aware that the recommneded method of migrating is: RHEL 7 > 8 > 9.
However, I would like to do RHEL 7 > 9. I have tried this is a small test lab and it
seems to be somewhat, OK. As I'm only interested in Users/Group.
As additoinal information; We will use the same Domain Name for the new instance aswell,
though we do not want to install this as a replica part of existing old one.
Are there anything else we should look out for or be aware of? E.g Client already enrolled
in Old Ipa instance?