Description of problem: Currently, when configuring katello to use IdM/FreeIPA or Active Directory as an authentication source, the documentation [1] directs the user to configure katello to use a statically configued LDAP server (the --ldap-server directive). Both IdM/FreeIPA and Active Directory support the usage of DNS Service Locator (SRV) records to locate a suitable LDAP server. This RFE is to request an update to katello to support SRV records, which will allow the system to leverage LDAP servers within the authentication realm. This would remove the single point of failure that currently exists. (If the LDAP server goes offline, authentication into SAM is offline). Also, with SRV locator records in use, if a LDAP server is removed/replaced/retired, it would not necessitate a change in the katello configuration. Version-Release number of selected component (if applicable): katello-configure-1.4.4-5.el6sam.noarch [1] - https://access.redhat.com/site/documentation/en-US/Red_Hat_Subscription_Management/1/html-single/Using_Subscription_Asset_Manager/index.html#sam-ldap-config
The release of Satellite 5.8 we are deprecating the support of Subscription Asset Manager. The release notes for 5.8 can be found at https://access.redhat.com/documentation/en-us/red_hat_satellite/5.8/pdf/release_notes/Red_Hat_Satellite-5.8-Release_Notes-en-US.pdf. I am therefore closing out this bug as WONTFIX. If you believe this to be an error, please feel free tor each out to either Rich Jerrido or Bryan Kearney. Thank you!