fixes #10436 Don't configure dns_key if nsupdate_gss is used

[smags]

Fixes http://projects.theforeman.org/issues/10436

My first ever pull request. Be gentle...

[mmoll]

According to the docs, :dns_key: false should be set. It makes probably no difference -proxy wise, but please change it to align it with the docs.

[smags]

If i set dns_key: false i get:
E, [2015-05-10T17:16:17.219244 #14988] ERROR -- : no implicit conversion of false into String

[mmoll]

Nice 🐼
Could you open a PR to theforeman/theforeman.org to fix chapter 4.3.6.3 then? :)

[smags]

Like to wait for a comment from @stbenjam ?

[mmoll]

OK

[domcleal]

The docs are indeed wrong, they should say to comment it out. The "false" suggestion probably came from back when we had this bug in 1.5: http://projects.theforeman.org/issues/5675. We had "false" as a workaround due to the bug in 1.5.0, then fixed the original issue in 1.5.2, only to find that keeping it set to false threw the error @smags noted above. We never did fix it to handle both.

[smags]

Thanks @domcleal . I will squash the commits tonight and create a pull request for the docs.

[mmoll]

Looking OK Puppet wise for me, please address the line note and squash the commits together into one then.

Somebody more proficient with IPA and friends should review this. @stbenjam maybe?

[stbenjam]

I've never used this, so can't really comment. I always let freeipa handle DNS without foreman being involved.

[smags]

I only found it because i am simulating independent DNS and IPA servers. DNS/DHCP would later run on Microsoft.

[smags]

Squashed commits and fixed the documentation: theforeman/theforeman.org#378

[mmoll]

👍

[ekohl]

Thanks!