Add FreeIPA setup to nc1

author: alex <alex@pdp7.net> 2023-02-05 19:55:10 +0100
committer: alex <alex@pdp7.net> 2023-02-05 19:55:10 +0100
commit: 7db50c0ec91da9c048f4447dcab8eb4a8f1ad018 (patch)
tree: 4790148981a1049eacc0da1eaf13ad669407189a /personal_infra/setup_ipa_replicas.md
parent: f09e36d7dc06fabe104f17c2f484baedf04d7c6c (diff)
1 files changed, 7 insertions, 0 deletions
diff --git a/personal_infra/setup_ipa_replicas.md b/personal_infra/setup_ipa_replicas.md
new file mode 100644
index 00000000..683c956f
--- /dev/null
+++ b/personal_infra/setup_ipa_replicas.md
@@ -0,0 +1,7 @@
+Update and reboot all IPA servers
+https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org/thread/2WMK5QOAI4TYF23UKODW3M6WB65BJCHT/
+
+firewall-cmd --permanent --add-port={80/tcp,443/tcp,389/tcp,636/tcp,88/tcp,88/udp,464/tcp,464/udp,53/
+firewall-cmd --reload
+ipa-client-install -p principal --domain=ipa.pdp7.net -W  --mkhomedir --ntp-pool=pool.ntp.org --force-join
+ipa-replica-install --ip-address=thishostaddress -n ipa.pdp7.net -P alex --setup-ca --setup-dns --forwarder=upstreamdnsforthishost
author	alex <alex@pdp7.net>	2023-02-05 19:55:10 +0100
committer	alex <alex@pdp7.net>	2023-02-05 19:55:10 +0100
commit	7db50c0ec91da9c048f4447dcab8eb4a8f1ad018 (patch)
tree	4790148981a1049eacc0da1eaf13ad669407189a /personal_infra/setup_ipa_replicas.md
parent	f09e36d7dc06fabe104f17c2f484baedf04d7c6c (diff)