Hi,

On Mon, May 6, 2024 at 8:57 AM Dmitry Krasov via FreeIPA-users <freeipa-users@lists.fedorahosted.org> wrote:

Hello.
just installed replica (ipa2.dom.loc), it seems works fine.

But how enrolled clients will know about this replica, if primary server will be down?

If you installed the clients using DNS Autodiscovery i.e. without the --server option (please refer to ipa-client-install(1) man page, especially the sections DNS Autodiscovery and The Failover Mechanism), then the failover should happen automatically. When the client's SSSD configuration file (/etc/sssd/sssd.conf) contains the _srv_ keyword in the ipa_server parameter, it means that SSSD uses service discovery through DNS to find an active server. More information in sssd-ipa(5) man page, in the Failover and Service Discovery sections.

Hope this clarifies,

flo

And how to make ipa2.dom.loc to work as primary server?

--
_______________________________________________
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue