-
Bug
-
Resolution: Unresolved
-
Normal
-
rhel-9.8
-
ipa-4.13.1-1.el9
-
Yes
-
Important
-
rhel-idm-ipa
-
22
-
24
-
0
-
QE ack, Dev ack
-
False
-
False
-
-
No
-
None
-
Pass
-
Automated
-
Unspecified Release Note Type - Unknown
-
Unspecified
-
Unspecified
-
Unspecified
-
None
Steps To reproduce :
- Install ipa server with --setup-dns
- Enable DNSSEC master: ipa-dns-install --dnssec-master --forwarder x.x.x.x -U
- Add a new DNSSEC-enabled zone : ipa dnszone-add example.test. --dnssec 'true
- The new zone is added but the records are not signed.
the zone doesn't get signedm there is traceback in the journal
Note : Failing only on rhel-9.8 not on rhel-10.2
- depends on
-
RHEL-137585 ipa-server-upgrade succeeds but ipactl restart fails due to ipa-dnskeysyncd service failure caused by SELinux AVC denial on RHEL 9.8
-
- Release Pending
-
- links to
-
RHSA-2025:154922
ipa security update