CentOS 8.x freeipa basic setup
From Notes_Wiki
Home > CentOS > CentOS 8.x > CentOS 8.x authentication servers > CentOS 8.x FreeIPA > CentOS 8.x freeipa basic setup
To setup a basic freeipa server use:
- Configure desired hostname
- hostnamectl set-hostname freeipa1.rnd.com
- Ensure that host is resolvable via DNS or add appropriate entry in /etc/hosts file
- 172.31.1.169 freeipa1.rnd.com
- Open required ports in firewall
- firewall-cmd --add-service={freeipa-ldap,freeipa-ldaps,dns,ntp} --permanent
- firewall-cmd --reload
- Install ipa packages
- dnf module enable idm:DL1 -y
- dnf distro-sync -y
- dnf install ipa-server ipa-server-dns -y
- Install package using 'ipa-server-install --setup-dns --allow-zone-overlap' with following inputs
- Server host name
- freeipa1.rnd.com
- Please confirm the domain name
- rnd.com
- Please provide a realm name
- RND.COM
- Directory Manager password
- secret123
- IPA admin password
- secret123
- Do you want to configure DNS forwarders?
- yes
- Following DNS servers are configured in /etc/resolv.conf
- 4.2.2.2, 8.8.8.8
- Do you want to configure these servers as DNS forwarders?
- yes
- Do you want to search for missing reverse zones?
- yes
- Do you want to create reverse zone for IP 172.31.1.169
- yes
- Please specify the reverse zone name
- 1.31.172.in-addr.arpa.
- Do you want to configure chrony with NTP server or pool address? [no]
- yes
- Enter NTP source server addresses separated by comma, or press Enter to skip
- time.google.com
- Continue to configure the system with these values? [no]
- yes
- You can login into the ipa server an admin user and use it.
Refer:
Home > CentOS > CentOS 8.x > CentOS 8.x authentication servers > CentOS 8.x FreeIPA > CentOS 8.x freeipa basic setup
