Hello,
I understand that this has been brought up before, but just wanted to ask if anyone has
found a solution since then.
We administer an HPC cluster, with private network and campus network.
The campus network and private network have no route to each other by design. Almost all
the HPC clusters are designed in such a manner to keep the private network/campus network
separated and secure.
We need freeipa master server to be installed that is on both campus network and private
network.
AD is available on campus network, and master freeipa should be able to synchronize with
AD on campus network.
Apart from above, i should be able to add freeipa replicas/slave servers which are only on
private network/or only on campus network and that sync with mulithomed master freeipa.
Thus the freeipa master server will have two hostnames for two networks.
for example. freeipa.hpc.private,
freeipa.test.org
The hosts on private network will talk to freeipa slaves/replicas on private network,
while the hosts on campus network will talk to freeipa slaves/replicas on campus network.
Please let is know if the above is possible, since it is a hard requirement without which
we cannot go ahead.
I see that this RFE was mentioned here, but not sure of any updates:
https://pagure.io/freeipa/issue/4007
Also please do let me know, of any other design implementation that could accomplish the
above requirements.
Thank you,
Lohit