Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Use new approach to validate whether the ipa-ca DNS record is complete
The previous method counted the number of servers with CA's and expected an identical count of servers in ipa-ca, for each of the A and AAAA types. If one server had only A or AAAA records then this count could be off and issue a spurious warning. Instead get the list of A and AAAA records for servers with a CA and compare the IP addresses to those of the A and AAAA records of ipa-ca. Return a warning if any are missing or not expected (e.g. a server was removed but remains in ipa-ca). #270 Signed-off-by: Rob Crittenden <rcritten@redhat.com>
- Loading branch information
Showing
2 changed files
with
238 additions
and
92 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.