summaryrefslogtreecommitdiffstats
path: root/ipa-client/ipa-install/ipa-client-install
diff options
context:
space:
mode:
authorJakub Hrozek <jhrozek@redhat.com>2011-02-10 21:47:45 +0100
committerRob Crittenden <rcritten@redhat.com>2011-02-14 14:45:22 -0500
commit22c3a681da7ec5c84e8822eb325c647a8e89942a (patch)
tree83813eacd9ee4050e4430101a048ad7cd416f1d5 /ipa-client/ipa-install/ipa-client-install
parentc9431749a0078df8bdf13490daac5f3467cc1c02 (diff)
downloadfreeipa-22c3a681da7ec5c84e8822eb325c647a8e89942a.zip
freeipa-22c3a681da7ec5c84e8822eb325c647a8e89942a.tar.gz
freeipa-22c3a681da7ec5c84e8822eb325c647a8e89942a.tar.xz
Fine tuning DNS options
Add pointer to self to /etc/hosts to avoid chicken/egg problems when restarting DNS. On servers set both dns_lookup_realm and dns_lookup_kdc to false so we don't attempt to do any resolving. Leave it to true on clients. Set rdns to false on both server and client. https://fedorahosted.org/freeipa/ticket/931
Diffstat (limited to 'ipa-client/ipa-install/ipa-client-install')
-rwxr-xr-xipa-client/ipa-install/ipa-client-install1
1 files changed, 1 insertions, 0 deletions
diff --git a/ipa-client/ipa-install/ipa-client-install b/ipa-client/ipa-install/ipa-client-install
index 5012c65..32a9aef 100755
--- a/ipa-client/ipa-install/ipa-client-install
+++ b/ipa-client/ipa-install/ipa-client-install
@@ -408,6 +408,7 @@ def configure_krb5_conf(fstore, cli_basedn, cli_realm, cli_domain, cli_server, d
else:
libopts.append({'name':'dns_lookup_realm', 'type':'option', 'value':'true'})
libopts.append({'name':'dns_lookup_kdc', 'type':'option', 'value':'true'})
+ libopts.append({'name':'rdns', 'type':'option', 'value':'false'})
libopts.append({'name':'ticket_lifetime', 'type':'option', 'value':'24h'})
libopts.append({'name':'forwardable', 'type':'option', 'value':'yes'})