documentation icon indicating copy to clipboard operation
documentation copied to clipboard

Published 20 hours ago verified publisher icon rocky-linux

IPA Administration Book

Open hbjydev opened this issue 3 years ago • 5 comments

I'd like to create (or see created) a book on deploying a FreeIPA/IdM installation on Rocky. I'm hoping to make this the first of some "what I learned deploying Rocky in a corporate environment" contributions I want to make. :)

I've got some decent experience working with it so far, and I'd like to contribute, and I should be able to next week.

Note: Everywhere "(CLI & UI)" appears, the CLI method is 100% preferred over the UI and will likely be done first.

  • [x] Installing IdM
    • [x] From Scratch
    • [ ] With Ansible
  • [x] Deploying a master
    • [x] From Scratch
    • [ ] With Ansible
  • [ ] Configuring Users
    • [ ] From Scratch (CLI & UI)
    • [ ] With Ansible
  • [ ] Configuring Groups
    • [ ] From Scratch (CLI & UI)
    • [ ] With Ansible
  • [ ] Configuring HBAC
    • [ ] From Scratch (CLI & UI)
    • [ ] With Ansible
  • [ ] Configuring Sudo
    • [ ] From Scratch (CLI & UI)
    • [ ] With Ansible
  • [ ] Configuring DNS
    • [ ] From Scratch (CLI & UI)
    • [ ] With Ansible
  • [ ] Configuring CA
    • [ ] From Scratch (CLI & UI)
    • [ ] With Ansible
  • [ ] Deploying a client
    • [ ] From Scratch
    • [ ] With Ansible
  • [ ] Deploying a replica
    • [ ] From Scratch
    • [ ] With Ansible

Some 'maybes':

  • [ ] Promoting a new master
  • [ ] AD Trust Setup (though this could maybe be its own collection of docs, not just one guide, go over different approaches)
  • [ ] Managing replicas (listing, deleting, etc.)
  • [ ] Disaster recovery
  • [ ] Production checklist (covers things like resources, considerations, networking, backups (or lack thereof, in this case), etc.)

hbjydev avatar May 23 '22 12:05 hbjydev

@hbjydev I think this would be a great document and a really nice addition to the books section of the documentation. I've got zero experience working with FreeIPA, but could lab test it if the document were started. There's no reason to blast through this though. You can start out with Chapter 1, "Installing IdM" lets say and work through it at your own pace. We can merge it in batches or one Chapter at a time, whichever is your preference. I worked with Antoine on his System Administrator book (and others) and he created a few chapters before we finally merged. He later followed up with some of the later chapters. It works, and makes the process a little less cumbersome for both the creator and the editor. Go for it when you are ready!

sspencerwire avatar Jun 12 '22 21:06 sspencerwire

Starting this today on stream :)

hbjydev avatar Aug 23 '22 18:08 hbjydev

Sounds good! Thanks @hbjydev !

sspencerwire avatar Aug 23 '22 19:08 sspencerwire