Hi Justin, On Sun, Nov 12, 2023 at 2:01 PM Justin Sanderson via FreeIPA-users < [email protected]> wrote: > > > All - I've posted here before a while back. Long story short, I > inherited a FreeIPA server and am now looking at building out a more > robust environment. > > Two things I'd like to ask some input for: > > > 1) Is there a way to determine when a client was last used for > authentication? I'm looking at a list of about 1500 client systems - > majority of which I'm sure haven't been used (retired client systems, > etc.) in a decent amount of time. I'd like to clean these systems up so > I have a more accurate representation of what is actually authenticating > against my IDM. >
I'm not sure if this is possible at all without looking at logs in the clients. > > 2) After cleanup, I'm interested in building a replica (or two) to > facilitate and upgrade. The current server is CentOS 7. We've had > numerous problems from this server and would like to upgrade to a more > supported/newer version of OS and IDM software. > > a) Is it possible to install a replica server as RHEL9 IDM server > from my existing CentOS 7 server? Essentially, what I'd like to occur > is we use the RHEL9 replica as a means to "migrate" and upgrade the > existing services and eventually poweroff the original Cent7 server. > Do not skip major versions. The recommended procedure is to update to CentOS/RHEL 8 and then to RHEL9. You want to follow these docs: * Upgrade to RHEL 8: https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/migrating_to_identity_management_on_rhel_8/migrating * Upgrade to RHEL 9: https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/migrating_to_identity_management_on_rhel_9/assembly_migrating-your-idm-environment-from-rhel-8-servers-to-rhel-9-servers_migrating-to-idm-on-rhel-9 HTH, Rafael > > The replica installation process seems to be fairly straight-forward, > but I was wondering if anyone out there has tried this before and any > painful "lessons learned" after the upgrade/migration... > > > Any help or insight would be appreciated. > > > > > -- > This email has been checked for viruses by AVG antivirus software. > www.avg.com > _______________________________________________ > FreeIPA-users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: https://lists.fedorahosted.org/archives/list/[email protected] > Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue -- Rafael Guterres Jeffman Senior Software Engineer FreeIPA - Red Hat
_______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
