On Thu, Mar 18, 2021 at 03:10:30PM +0100, Kees Bakker via FreeIPA-users wrote:
> Hi,
> 
> We have FreeIPA with three masters. To get to the LDAP server
> we can use either of the three. To configure a service you must
> come up with a FQDN for the LDAP server. Until now we have
> simply selected one of the three. But that's not very convenient
> because we want to do maintenance on that IPA master.
> 
> What possibilities are there to have something that switches
> automatically to another server? How is the SRV _ldap._tcp record
> used?
>
Hi Kees,

SRV records for _ldap._tcp.$DOMAIN return list of DNS names and
ports for actual service endpoints.  See
https://www.freeipa.org/page/V4/DNS_Location_Mechanism#Current_use_of_SRV_records
for example.  See https://tools.ietf.org/html/rfc2782 for the
specification of SRV records and how to interpret them.

If it is possible to configure the service to use SRV records to
locate the LDAP server, that is the best approach.

Cheers,
Fraser
_______________________________________________
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct: 
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
Do not reply to spam on the list, report it: 
https://pagure.io/fedora-infrastructure

Reply via email to