[Freeipa-users] Howto re-deploy an IPA-client using kickstart
Charlie Derwent
shelltoesuperstar at gmail.com
Sat Jan 26 00:57:44 UTC 2013
Hi Matthew,
Yes, as said earlier "ipa disable-host <fqdn>; ipa host-mod <fqdn>
--password=foo" works flawlessly. The issue lies with attempting to reuse
"foo" as the password, the IPA sever prevents that (and rightly so) which
complicates automation hence the RFE.
Charlie.
On Thu, Jan 24, 2013 at 4:34 PM, Matthew Barr <mbarr at snap-interactive.com>wrote:
> Just reading this over, and the RFE, I've got another possible option.
>
> Our standard build uses a key tab of a user with permission to add a host,
> and that sets the OTP for the kickstart to use.
>
> Is it possible to reset the state of the host record to the state where it
> can use the same install command on an existing host record? Basically,
> set the OTP again?
>
> If i could run a single command to reset the state to allow the OTP to
> work it would work fairly well..
>
> for example: ipa host-mod wiki01.ayisnap.com --password=foo
>
>
> Background:
>
> We've got IPA & puppet. I have to purge the IPA host record & the puppet
> SSL keys, in order to regenerate them both. Satellite/Spacewalk allows for
> a rebuild command, but I'm not sure what Katello & foreman will do in the
> future.
>
>
>
>
> Matthew Barr
> Technical Architect
> E: mbarr at snap-interactive.com
> AIM: matthewbarr1
> c: (646) 727-0535
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20130126/66dcfa2a/attachment.htm>
More information about the Freeipa-users
mailing list