Description of problem: From freeipa-users: Using ipa-server-install --setup-dns“, the SOA Records in DNS are wrong. There are missing trailing dots for server-name und email, at reverse-zone also in the zone-name. To look at this, just use dig and dig -x on domain, changing it directly in ldap corrects it.. Should be easy to fix in ipaserver/install/bindinstance.py
As far as I can tell these have all been fixed: # dig example.com ; <<>> DiG 9.6.2-P2-RedHat-9.6.2-5.P2.fc12 <<>> example.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 36698 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;example.com. IN A ;; AUTHORITY SECTION: example.com. 3600 IN SOA lion.example.com. root.lion.example.com. 2010200901 3600 900 1209600 3600 # dig -x 192.168.166.32 ; <<>> DiG 9.6.2-P2-RedHat-9.6.2-5.P2.fc12 <<>> -x 192.168.166.32 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 49151 ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;32.166.168.192.in-addr.arpa. IN PTR ;; ANSWER SECTION: 32.166.168.192.in-addr.arpa. 86400 IN PTR lion.example.com. ;; AUTHORITY SECTION: 166.168.192.in-addr.arpa. 86400 IN NS lion.example.com. Closing currentrelease.