diff options
| author | Martin Kosek <mkosek@redhat.com> | 2011-05-22 19:17:07 +0200 |
|---|---|---|
| committer | Martin Kosek <mkosek@redhat.com> | 2011-06-08 09:29:52 +0200 |
| commit | 241ee334defda108e22855331d5d9a14f261ce16 (patch) | |
| tree | 7bfaaeeb2673f473423d6aa418142468fa4b6dd9 /install/tools/man/ipa-replica-install.1 | |
| parent | 8077b7ab938f436582b3985c1b6fd0ad90e8bb3d (diff) | |
| download | freeipa-241ee334defda108e22855331d5d9a14f261ce16.tar.gz freeipa-241ee334defda108e22855331d5d9a14f261ce16.tar.xz freeipa-241ee334defda108e22855331d5d9a14f261ce16.zip | |
Connection check program for replica installation
When connection between a master machine and future replica is not
sane, the replica installation may fail unexpectedly with
inconvenient error messages. One common problem is misconfigured
firewall.
This patch adds a program ipa-replica-conncheck which tests the
connection using the following procedure:
1) Execute the on-replica check testing the connection to master
2) Open required ports on local machine
3) Ask user to run the on-master part of the check OR run it
automatically:
a) kinit to master as default admin user with given password
b) run the on-master part using ssh
4) When master part is executed, it checks connection back to
the replica and prints the check result
This program is run by ipa-replica-install as mandatory part. It
can, however, be skipped using --skip-conncheck option.
ipa-replica-install now requires password for admin user to run
the command on remote master.
https://fedorahosted.org/freeipa/ticket/1107
Diffstat (limited to 'install/tools/man/ipa-replica-install.1')
| -rw-r--r-- | install/tools/man/ipa-replica-install.1 | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/install/tools/man/ipa-replica-install.1 b/install/tools/man/ipa-replica-install.1 index 3ee304224..888923546 100644 --- a/install/tools/man/ipa-replica-install.1 +++ b/install/tools/man/ipa-replica-install.1 @@ -36,6 +36,9 @@ Enable debug logging when more verbose output is needed \fB\-p\fR, \fB\-\-password\fR=\fIDM_PASSWORD\fR Directory Manager (existing master) password .TP +\fB\-w\fR \fIADMIN_PASSWORD\fR, \fB\-\-admin\-password\fR=\fIADMIN_PASSWORD\fR +Admin user Kerberos password used for connection check +.TP \fB\-\-setup\-dns\fR Generate a DNS zone if it does not exist already and configure the DNS server. This option requires that you either specify at least one DNS forwarder through @@ -58,6 +61,9 @@ Do not use DNS for hostname lookup during installation \fB\-\-no\-pkinit\fR Disables pkinit setup steps .TP +\fB\-\-skip\-conncheck\fR +Skip connection check to remote master +.TP \fB\-U\fR, \fB\-\-unattended\fR An unattended installation that will never prompt for user input .SH "EXIT STATUS" |