Plugins » Katello

Hi Team

i install katello dns proxy using the following configuration

foreman-installer --scenario katello --foreman-proxy-dns true --foreman-proxy-dns-interface ens192 --foreman-proxy-dns-zone pp.example.net.nz --foreman-proxy-dns-reverse 179.25.172.in-addr.arpa --foreman-proxy-dns-provider nsupdate_gss --foreman-proxy-dns-tsig-principal foremanproxy@PP.VFICONNECT.NET.NZ --foreman-proxy-dns-tsig-keytab /etc/foreman-proxy/dns.keytab --foreman-proxy-dns-server 172.25.176.37 --foreman-proxy-dns-forwarders 172.25.176.38 -v

instead to use the default nsupdate i'm using nsupdate_gss for create the record in a Active directory

When i go to the gui the smart proxy only have the following services
Pulp, TFTP, DHCP, Puppet, and Puppet CA

I try refresh the features and nothing happen

The fix was on /etc/foreman-proxy is the 2 files
dns_nsupdate.yml
-- #

1. Configuration file for 'nsupdate' dns provider #

:dns_key: /etc/rndc.key

1. use this setting if you are managing a dns server which is not localhost though this proxy
   :dns_server: 172.25.176.37

###dns_nsupdate_gss.yml
-- #

1. Configuration file for 'nsupdate_gss' dns provider with GSS-TSIG support #

1. use this setting if you are managing a dns server which is not localhost though this proxy
   :dns_server: 172.25.176.37
2. use dns_tsig_* for GSS-TSIG updates using Kerberos. Required for Windows MS DNS with
3. Secure Dynamic Updates, or BIND as used in FreeIPA. Set dns_provider to nsupdate_gss.
   :dns_tsig_keytab: /etc/foreman-proxy/dns.keytab
   :dns_tsig_principal: foremanproxy@PP.VFICONNECT.NET.NZ

The solution was on the file dns_nsupdate.yml

comment out
#:dns_key: /etc/rndc.key

after do this restart the foreman-proxy service
systemctl restart foreman-proxy

Now come back to the GUI refresh the features and Bam!!!!
Pulp, TFTP, DNS, DHCP, Puppet, and Puppet CA

DNS Proxy now is enable