Hello, I understand that this has been brought up before, but just wanted to ask if anyone has found a solution since then. We administer an HPC cluster, with private network and campus network. The campus network and private network have no route to each other by design. Almost all the HPC clusters are designed in such a manner to keep the private network/campus network separated and secure. We need freeipa master server to be installed that is on both campus network and private network. AD is available on campus network, and master freeipa should be able to synchronize with AD on campus network. Apart from above, i should be able to add freeipa replicas/slave servers which are only on private network/or only on campus network and that sync with mulithomed master freeipa. Thus the freeipa master server will have two hostnames for two networks. for example. freeipa.hpc.private, freeipa.test.org The hosts on private network will talk to freeipa slaves/replicas on private network, while the hosts on campus network will talk to freeipa slaves/replicas on campus network. Please let is know if the above is possible, since it is a hard requirement without which we cannot go ahead. I see that this RFE was mentioned here, but not sure of any updates: https://pagure.io/freeipa/issue/4007 Also please do let me know, of any other design implementation that could accomplish the above requirements. Thank you, Lohit