|author||Rob Crittenden <email@example.com>||2010-07-26 17:54:38 -0400|
|committer||Rob Crittenden <firstname.lastname@example.org>||2010-08-16 10:35:27 -0400|
Add support for client failover to the ipa command-line.
This adds a new global option to the ipa command, -f/--no-fallback. If this is included then just the server configured in /etc/ipa/default.conf is used. Otherwise that is tried first then all servers in DNS with the ldap SRV record are tried. Create a new Local() Command class for local-only commands. The help command is one of these. It shouldn't need a remote connection to execute. ticket #15
Diffstat (limited to 'ipa.1')
1 files changed, 13 insertions, 0 deletions
@@ -52,6 +52,9 @@ Don't prompt for any parameters of \fBCOMMAND\fR, even if they are required.
Prompt for ALL values (even if optional)
+Don't fall back to other IPA servers if the default doesn't work.
Produce verbose output. A second \-v displays the XML\-RPC request
@@ -157,6 +160,16 @@ Only the user with the specified IPA unique ID would match the search criteria.
All users would match the search criteria (as there are none).
+The ipa client will determine which server to connect to in this order:
+1. The server configured in \fB/etc/ipa/default.conf\fR in the \fIxmlrpc_uri\fR directive.
+2. An unordered list of servers from the ldap DNS SRV records.
+If a kerberos error is raised by any of the requests then it will stop processing and display the error message.