Product SiteDocumentation Site

freeIPA 1.2.1

Installation and Deployment Guide

IPA Solutions from the IPA Experts

Edition 1.1

Legal Notice

Copyright © 2008 Red Hat. This material may only be distributed subject to the terms and conditions set forth in the Open Publication License, V1.0 or later. The latest version of the OPL is presently available at http://www.opencontent.org/openpub/.
Red Hat and the Red Hat "Shadow Man" logo are registered trademarks of Red Hat, Inc. in the United States and other countries.
All other trademarks referenced herein are the property of their respective owners.
The GPG fingerprint of the security@redhat.com key is:
CA 20 86 86 2B D6 9D FC 65 F6 EC C4 21 91 80 CD DB 42 A6 0E

1801 Varsity Drive
RaleighNC 27606-2072
USA
Phone: +1 919 754 3700
Phone: 888 733 4281
Fax: +1 919 754 3701
PO Box 13588
Research Triangle ParkNC 27709
USA

Abstract
This guide covers the basic considerations that should be addressed before deploying IPA. It also covers the installation and configuration of each of the supported server platforms, and how to set up synchronization between IPA and Windows Active Directory.
Preface
1. Audience
2. Document Conventions
2.1. Typographic Conventions
2.2. Pull-quote Conventions
2.3. Notes and Warnings
3. We Need Feedback!
1. Introduction
1.1. What is IPA?
1.2. Components of IPA
2. Preparing for an IPA Installation
2.1. Assumptions
2.2. Required Ports
2.3. File Systems
2.4. DNS
2.5. Configuring Networking
2.5.1. Configuring Networking Services
2.5.2. Configuring the /etc/hosts File
2.6. Hardware Requirements
2.7. Software Requirements
3. Setting up the IPA Server
3.1. Installing the IPA Server
3.2. Configuring the IPA Server
3.2.1. Testing the Configuration
3.3. Configuring Your Browser
3.3.1. Troubleshooting
3.4. Using a Browser on Another System
4. Setting up Synchronization Between IPA and Active Directory
4.1. Introduction
4.2. Prerequisites
4.2.1. Domain Name Considerations
4.2.2. Setting up Active Directory
4.3. Setting up Windows Sync on the IPA Server
4.4. Creating Synchronization Agreements
4.5. Modifying Synchronization Agreements
4.5.1. Changing the Default Synchronization Subtree
4.6. Deleting Synchronization Agreements
5. Setting up Multi-Master Replication
5.1. Preparing the Replica Servers
5.2. Installing the Server Packages
5.3. Creating the Replica Information File
5.4. Configuring an IPA Replica
5.4.1. Updating DNS for IPA Replicas
5.5. Managing Multi-Master Replication
5.6. Troubleshooting Multi-Master Replication
6. Setting up IPA to run as an Apache Virtual Host
A. Revision History