3 Feb
2020
3 Feb
'20
3:05 p.m.
Charles Hedrick via FreeIPA-users freeipa-users@lists.fedorahosted.org writes:
We currently do rsync backups of our server. On an MIT server, you’d want to omit the stash file. But IPA doesn’t use that. Is there anything like that that should be omitted? I’m not sure just how freeipa bootstraps trust when it starts up.
In IPA, we're storing all Kerberos data in LDAP (389ds with a custom KDB). So you'll want to be careful around that - I can't speak to how the LDAP storage works, though.
Thanks, --Robbie