On Thu, Mar 18, 2021 at 03:10:30PM +0100, Kees Bakker via FreeIPA-users wrote: > Hi, > > We have FreeIPA with three masters. To get to the LDAP server > we can use either of the three. To configure a service you must > come up with a FQDN for the LDAP server. Until now we have > simply selected one of the three. But that's not very convenient > because we want to do maintenance on that IPA master. > > What possibilities are there to have something that switches > automatically to another server? How is the SRV _ldap._tcp record > used? > Hi Kees,
SRV records for _ldap._tcp.$DOMAIN return list of DNS names and ports for actual service endpoints. See https://www.freeipa.org/page/V4/DNS_Location_Mechanism#Current_use_of_SRV_records for example. See https://tools.ietf.org/html/rfc2782 for the specification of SRV records and how to interpret them. If it is possible to configure the service to use SRV records to locate the LDAP server, that is the best approach. Cheers, Fraser _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure