For the IPA provider, always set the local hostname in the locator file when only one server is listed #2443

sssd-bot · 2020-05-02T12:36:07Z

Cloned from Pagure issue: https://pagure.io/SSSD/sssd/issue/1401

Created at 2012-07-03 15:45:31 by simo
Closed as Duplicate
Assigned to nobody

On IPA servers we need to turn on by default dns_lookup_kdc to true
The reason is that we need to allow IPA servers to properly resolve trusted domains via DNS.

However we do not want to really do DNS resolution for our own realm.
If the ipa_server option point to a single server we should dump in the locator plugin file the first name as soon as the ipa backend is initialized, even before any lookup is done.

This will allow libkrb5 to never perform DNS lookups by default but refer only to the local server.

Comments

Comment from dpal at 2012-07-05 15:30:33

This is a dup of a part of the #941. We are closing this ticket and pulling in #941.

Comment from dpal at 2012-07-05 15:30:44

Fields changed

resolution: => duplicate
status: new => closed

Comment from simo at 2017-02-24 14:34:06

Metadata Update from @Simo:

Issue set to the milestone: NEEDS_TRIAGE

sssd-bot added the Closed: Duplicate label May 2, 2020

sssd-bot closed this as completed May 2, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

For the IPA provider, always set the local hostname in the locator file when only one server is listed #2443

For the IPA provider, always set the local hostname in the locator file when only one server is listed #2443

sssd-bot commented May 2, 2020