.The IdM server functions only partially or not at all In this release, changes introduced by OpenSSL have impacted the integrated DNS functionality within Identity Management (IdM). Most notably, the OpenSSL PKCS #11 engine is replaced by a new `pkcs11-provider`. This shift affects multiple components in IdM, including `ipa`, `bind`, `bind-dyndb-ldap`, `softhsm`, and `python-cryptography`. The transition from the `openssl-pkcs11` engine to the `pkcs11-provider` changes the way these components interact with security modules. As a result, all IdM components relying on the previous OpenSSL engine require updates to remain compatible with the new `pkcs11-provider`. To support the new `pkcs11-provider`, a migration to Bind 9.20 is necessary. Bind 9.20 is the first version that provides compatibility with the `pkcs11-provider`, but it also introduces substantial architectural changes. These changes require a major rewrite of the `bind-dyndb-ldap` plugin to ensure that it continues functioning properly with the updated Bind and OpenSSL configurations. Consequently, the IdM server functions only partially or not at all in RHEL 10-Beta. Specifically, you cannot install the `ipa-server-dns` package, and the embedded DNS server cannot be configured using the `--setup-dns` option. Until the necessary updates to `bind-dyndb-ldap` and other impacted components are completed, the integrated DNS feature remains unavailable.