Step 3. Verify current replication status
Once you have set up the replication, lets inspect the default replication setup that we now have. It should match what the FreeIPA scenario was above.
Here we can see that we have 3 successfully set up FreeIPA directory servers.
[root@ds03 ~]# ipa-replica-manage list ds03.example.com: master ds01.example.com: master ds02.example.com: master [root@ds03 ~]#
Lets look a little deeper.
Here we will see that the replication is exactly how the scenario was at the beginning of this article. There is no replication between ds01.example.com and ds03.example.com
[root@ds03 ~]# ipa-replica-manage list ds01.example.com ds02.example.com: replica [root@ds03 ~]# [root@ds03 ~]# ipa-replica-manage list ds02.example.com ds01.example.com: replica ds03.example.com: replica [root@ds03 ~]# [root@ds03 ~]# ipa-replica-manage list ds03.example.com ds02.example.com: replica [root@ds03 ~]#
Step 4. Create new replication agreement.
Lets go ahead and create a new replication agreement so that ds01.example.com and ds03.example.com and replicate between themselves.
Its really quite straight forward. Its a one line command.
[root@ds03 ~]# ipa-replica-manage connect ds01.example.com ds03.example.com Connected 'ds01.example.com' to 'ds03.example.com' [root@ds03 ~]#
Lets have another look at the replication agreements to see what is replicating where.
[root@ds03 ~]# ipa-replica-manage list ds01.example.com ds02.example.com: replica ds03.example.com: replica [root@ds03 ~]# ipa-replica-manage list ds02.example.com ds01.example.com: replica ds03.example.com: replica [root@ds03 ~]# ipa-replica-manage list ds03.example.com ds01.example.com: replica ds02.example.com: replica [root@ds03 ~]#
Check it out. We have now set up replication in all directions for our 3 server setup of FreeIPA.