[Freeipa-devel] [PATCH] 531 make DNS autodiscovery smarter
Rob Crittenden
rcritten at redhat.com
Sat Sep 18 01:33:37 UTC 2010
Better distinguish between when DNS discovery works and search more domains.
Passing domain and server on the command-line used to be considered as
DNS autodiscovery worked. This was problematic if there was in fact no
SRV records because krb5.conf would be configured without a specific KDC
causing all Kerberos ops to fail.
Now if you pass in a domain/server it still tries to see if they are
discoverable and if so won't hardcode a server, but will fall back to
doing so if necessary.
Also be a lot more aggressive on looking for the SRV records. Use the
search and domain values from /etc/resolv.conf on the chance that the
SRV records aren't in the domain of the hostname of the machine.
An example of this would be if your laptop is in dhcp.example.com and
your company's SRV records are in corp.example.com. Searching
dhcp.example.com and example.com won't find the SRV records but the user
is likely to have corp.redhat.com in the search list, at least.
rob
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-531-discovery.patch
Type: text/x-patch
Size: 7001 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20100917/af4723da/attachment.bin>
More information about the Freeipa-devel
mailing list