3.2. Configuring the IPA Server

3.2. Configuring the IPA Server

Use the ipa-server-install command to install the IPA server, which includes:

You can install the server interactively by running the command with no options, or by passing options directly to the ipa-server-install command. To view the available command-line options, run /usr/sbin/ipa-server-install --help

Note

If you are running IPA as a virtualized guest, you should not run the NTP daemon. In this case, you should pass the -N (no ntp) option to the ipa-server-install command.

Procedure 3.1. To install the IPA server interactively:

  1. Run the following command:

    # ipa-server-install

  2. Enter the server's host name, realm name and other details when prompted.

    The installation script compares the hostname returned by DNS to the hostname found in the /etc/hosts file. If the non-fully—qualified domain name appears first, the script aborts.

    Note

    The hostname that you enter into the ipa-server-install script must be the same as that returned by the hostname command, otherwise the Directory Server cannot use its own keytab. This can cause some ipa-* commands to fail.

  3. Wait until the configuration script completes. It can take several minutes to set up and configure all of the IPA requirements.

  4. When the configuration script completes, restart the SSH service so that it re-reads the Name Server Switch (nss) configuration file.

    To restart the SSH service, run the following command (existing connections are not terminated):

    # service sshd restart