Red Hat Bugzilla – Bug 822252
ipa-client kickstart documentation incorrect
Last modified: 2012-06-26 11:02:17 EDT
Description of problem:
Use found some problems with the kickstart documentation in the Fedora published 2.2 version at http://docs.fedoraproject.org/en-US/Fedora/16/html/FreeIPA_Guide/kickstart.html
This is an issue in the RHEL docs as well.
In section 3.6 in step 3 the ipa-client-install invocation should drop the --principal part. The equals sign after the -w needs to be dropped too.
It should read:
/usr/sbin/ipa-client-install --domain=EXAMPLEDOMAIN --enable-dns-updates --mkomedir -w secret --realm=EXAMPLEREALM --server=ipaserver.example.com --unattended
Single dash options don't take an equals, only double-dash options do. This would have passed the passwords as =secret. The principal is only required if you are authenticating as an IPA user. In this case we are authenticating as the host which is implied.
Corrected the script example: