mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2025-02-25 18:55:28 -06:00
63fa87a36e
Scenario: install a replica with DNS, whose IP address is part of a forward zone. Currently, the replica installation fails because the installer is trying to add a A/AAAA record for the replica in the zone when setting up the bind instance, and addition of records in a forward zone is forbidden. The bind installer should check if the IP address is in a master zone (i.e. a DNS zone managed by IdM, not a forward zone), and avoid creating the record if it's not the case. During uninstallation, perform the same check before removing the DNS record (if in a forward zone, no need to call dnsrecord-del). Fixes: https://pagure.io/freeipa/issue/7369 Reviewed-By: Francois Cami <fcami@redhat.com>