tickets #130297
closed
Plan for migrating the primary freeipa to freeipa2
Added by hellcp 11 months ago.
Updated 5 months ago.
Category:
Core services and virtual infrastructure
Description
We don't really want to rely on the old freeipa machine forever, so let's plan the migration path.
https://www.freeipa.org/page/Howto/Migration
Since this can go horribly wrong, it would be nice to have somebody who has more access as a backup in order to restore the functionality of the vpn.
- Private changed from Yes to No
I know this is a bigger idea, but do we want to keep FreeIPA or use the opportunity to migrate to a different solution? After all, we barely use any of the features FreeIPA offers.
That being said, happy to be on stand-by for console access - just ping in IRC when you plan to start.
crameleon wrote:
I know this is a bigger idea, but do we want to keep FreeIPA or use the opportunity to migrate to a different solution? After all, we barely use any of the features FreeIPA offers.
I kind of feel the same here.
What's the status of this? I notice freeipa.i.o.o runs Fedora 25 which is an operating system that reached it's End Of Life almost 5 years ago.
I mean, I think we could do this any day, just a matter or making a commitment
- Status changed from New to Rejected
There didn't seem to be any commitment and nobody seems to be willing to administrate CentOS/Fedora.
We will probably switch to a Kanidm based solution based on openSUSE.
That's kind of what I was eyeing as well, but I wanted to at least decommission the old Fedora system that was still around for something we can at the very least update, especially since we will have an easier time migrating to kanidm from newer freeipa
Also available in: Atom
PDF