Red Hat Bugzilla – Bug 1475085
[RFE] Migration capabilities between non-FIPS IDM to FIPS IDM
Last modified: 2017-08-17 07:40:19 EDT
Description of problem:
As per the Doc Text for bug https://bugzilla.redhat.com/show_bug.cgi?id=1125174, the text leads mentions that there is no transition from an IPA instance that is not FIPS to a new FIPS enabled environment short of re-installing everything.
This is unacceptable as customers would have to redo the entire trust domain as the solution.
Version-Release number of selected component (if applicable):
In the case that this is "the only way" then we may need some really good documentation on how to migrate everything. IPA is woven throughout the entire Red Hat product line and transitioning the various products (RHV, Satellite, etc) to a new trust domain is likely not trivial.