Bug 713473

Summary: kdcinfo not updated on failover
Product: Red Hat Enterprise Linux 6 Reporter: Rob Crittenden <rcritten>
Component: sssdAssignee: Stephen Gallagher <sgallagh>
Status: CLOSED NOTABUG QA Contact: Chandrasekar Kannan <ckannan>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 6.1CC: benl, grajaiya, jgalipea, prc
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-06-17 15:20:16 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 696193    

Description Rob Crittenden 2011-06-15 13:59:39 UTC 
Description of problem:
BZ https://bugzilla.redhat.com/show_bug.cgi?id=696193 was testing installing an IPA client while one of the available servers was down.

Two servers were set up, A and B. A was shut down and kerberos clients on B were unable to kinit. B is a full KDC with SRV records in DNS. The user had to edit /var/lib/sss/pubconf/kdcinfo.<REALM> to remove server A and add server B. Once that was done Kerberos was again available.

Version-Release number of selected component (if applicable):
sssd-1.5.1-40.el6.x86_64
Comment 2 Rob Crittenden 2011-06-17 15:20:16 UTC 
After some discussion we decided to configure IPA servers to not use SRV
records and only talk to the local install.