Description of problem: In 16.2.0/16.2.1, IDM server input value is limited to a string where there can be only one value of IPA server, however IPA ansible playbook is capable of accepting multiple values of IPA server. [IDM tripleO heat template] IdMServer: default: '' ... type: string [ ipaclient ansible install task ] - name: Install - Set ipaclient_servers set_fact: ipaclient_servers: "{{ groups['ipaservers'] | list }}" <--- list value when: groups.ipaservers is defined and ipaclient_servers is not defined IDM tripleO heat template needs improvement so that it can convey the original intension of IPA client integration Ansible playbook. Version-Release number of selected component (if applicable): 16.2.0/16.2.1 How reproducible: Provide the two values of IPA servers to IdMServer, and installation fails since IdMServer is set to string. Steps to Reproduce: 1. provide heat param like IdMServer: "ipaserver1,ipaserver2" 2. run overcloud deployment 3. installation fails Actual results: .... Overcloud Deployed with error Overcloud configuration failed. Expected results: successful deployment of overcloud without issue Additional info:
Ansible doesn't support a list of IDM servers (it can reads the IPA_HOST env var or 'ipa-ca'), but in my opinion, we shouldn't wait for this to be implemented. We can pass the first server from the list during the installation to Ansible and supply the whole list to ipa-client-install.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Release of components for Red Hat OpenStack Platform 16.2.4), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2022:8794