Методические материалы Лохтурова Вячеслава

User Tools

Site Tools

Trace:
решение_freeipa

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
решение_freeipa [2025/12/26 11:44]
val 		решение_freeipa [2025/12/29 08:57] (current)
val [Динамический DNS]
Line 257: Line 257:
  
   * [[Авторизация с использованием LDAP сервера]]   * [[Авторизация с использованием LDAP сервера]]
 +
 +===== Динамический DNS =====
 +
 +  * [[https://​astrid.tech/​2021/​04/​18/​0/​k8s-freeipa-dns/​|How to set up Dynamic DNS on FreeIPA for your Kubernetes Cluster]]
 +  * [[https://​www.ipamworldwide.com/​ipam/​update-policy.html|BIND update-policy option]]
 +
 +<​code>​
 +[root@freeipa-server ~]# tsig-keygen cert-manager | tee /​data/​etc/​named/​cert-manager.key
 +
 +server.corp13.un:​~#​ cat /​opt/​freeipa-data/​etc/​named/​ipa-ext.conf
 +...
 +include "/​data/​etc/​named/​cert-manager.key";​
 +
 +[root@freeipa-server ~]# rndc reload
 +
 +Политика обновления BIND
 +...; grant cert-manager subdomain corp13.un. TXT;
 +
 +[root@freeipa-server ~]# nsupdate -k /​data/​etc/​named/​cert-manager.key
 +server 127.0.0.1
 +zone corp13.un
 +update add _acme-challenge.gitlab.corp13.un. 30 IN TXT "​your_txt_record_data 1"
 +send
 +</​code>​
  
 ===== Отладка ===== ===== Отладка =====
Line 337: Line 361:
 ==== Черновик ==== ==== Черновик ====
 <​code>​ <​code>​
-https://​astrid.tech/​2021/​04/​18/​0/​k8s-freeipa-dns/​ 
- 
 ipa dnsrecord-add corp26.un gitlab --a-rec="​192.168.26.65"​ ipa dnsrecord-add corp26.un gitlab --a-rec="​192.168.26.65"​
 sleep 5 sleep 5
решение_freeipa.1766738687.txt.gz · Last modified: 2025/12/26 11:44 by val

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Run on Debian Driven by DokuWiki