Bug 1008203

Summary: DNSSEC support for FreeIPA
Product: [Retired] Fedora Documentation Reporter: Pete Travis <me>
Component: release-notesAssignee: Pete Travis <me>
Status: CLOSED NOTABUG QA Contact: Fedora Docs QA <docs-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: develCC: jreznik, mkosek, pspacek, relnotes, tbabej, wb8rcr, zach
Target Milestone: ---Keywords: Tracking
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: 998522 Environment:
Last Closed: 2013-10-19 16:57:17 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 998522    
Bug Blocks:    

Description Pete Travis 2013-09-15 18:38:46 UTC 
+++ This bug was initially created as a clone of Bug #998522 +++

This is a tracking bug for Change: DNSSEC support for FreeIPA
For more details, see: http://fedoraproject.org//wiki/Changes/IPAv3DNSSEC

FreeIPA with integrated DNS server will support serving of DNSSEC secured zones.

--- Additional comment from Tomas Babej on 2013-08-28 10:22:11 EDT ---

This feature is self-contained and not in a testable state yet. It is planned for FreeIPA 3.4 Beta release which is aligned with the F20 schedule.

--- Additional comment from Petr Spacek on 2013-09-02 07:18:58 EDT ---

It is possible that we will not be able to complete the feature in time for Fedora 20 beta.

From:
http://fedoraproject.org//wiki/Changes/IPAv3DNSSEC#Contingency_Plan
Contingency mechanism: Do not expose new feature in FreeIPA's user interface (i.e. revert patches for user interface)

--- Additional comment from Jaroslav Reznik on 2013-09-04 08:28:20 EDT ---

Ok, in case you won't be able to finish it by Beta Change Deadline (currently planned for 2013-10-08), let me know and put the bug to the NEW state, version to rawhide.

Thanks for update!

-----------------------------------------------------------------
Discussion available at https://lists.fedoraproject.org/pipermail/devel-announce/2013-July/001193.html

Please document this Change in the Release Notes.
Comment 1 Martin Kosek 2013-09-16 06:56:32 UTC 
Please just note, that there is a possibility that this feature will be pulled out of Fedora 19 release in case we do not manage to overcome challenges we face with this feature in time.

As Jaroslav stated above, 2013-10-08 is the day when this should be resolved.
Comment 2 Pete Travis 2013-10-11 05:15:07 UTC 
Draft added to https://fedoraproject.org/wiki/Documentation_Security_Beat 

Is this Change a go, Martin?
Comment 3 Petr Spacek 2013-10-11 06:11:17 UTC 
No, it isn't. The feature is not ready for Fedora 20.
Comment 4 Martin Kosek 2013-10-11 07:53:46 UTC 
Petr is right, we had to re-target the feature. See Bug 998522 for additional details. Sorry for inconvenience.
Comment 5 Pete Travis 2013-10-19 16:57:17 UTC 
Thanks for updating, Petr and Martin. We will come back to this during the next cycle.