From 1df10a88cd8b36be8b9b4d47c49dd9e7d1d12bc0 Mon Sep 17 00:00:00 2001 From: Rob Crittenden Date: Mon, 26 Jul 2010 17:54:38 -0400 Subject: Add support for client failover to the ipa command-line. This adds a new global option to the ipa command, -f/--no-fallback. If this is included then just the server configured in /etc/ipa/default.conf is used. Otherwise that is tried first then all servers in DNS with the ldap SRV record are tried. Create a new Local() Command class for local-only commands. The help command is one of these. It shouldn't need a remote connection to execute. ticket #15 --- ipa.1 | 13 +++++++++++++ 1 file changed, 13 insertions(+) (limited to 'ipa.1') diff --git a/ipa.1 b/ipa.1 index 67a123756..e340988de 100644 --- a/ipa.1 +++ b/ipa.1 @@ -52,6 +52,9 @@ Don't prompt for any parameters of \fBCOMMAND\fR, even if they are required. \fB\-a\fR, \fB\-\-prompt\-all\fR Prompt for ALL values (even if optional) .TP +\fB\-f\fR, \fB\-\-no\-fallback\fR +Don't fall back to other IPA servers if the default doesn't work. +.TP \fB\-v\fR, \fB\-\-verbose\fR Produce verbose output. A second \-v displays the XML\-RPC request .SH "COMMANDS" @@ -157,6 +160,16 @@ Only the user with the specified IPA unique ID would match the search criteria. .TP \fBipa user\-find\fR All users would match the search criteria (as there are none). +.SH "SERVERS" +The ipa client will determine which server to connect to in this order: + +.TP +1. The server configured in \fB/etc/ipa/default.conf\fR in the \fIxmlrpc_uri\fR directive. +.TP +2. An unordered list of servers from the ldap DNS SRV records. + +.TP +If a kerberos error is raised by any of the requests then it will stop processing and display the error message. .SH "FILES" .TP \fB/etc/ipa/default.conf\fR -- cgit