Page History

...

1. Login to Morpheus
2. Go to Provisioning → Instances and click '+ADD'
3. Select the LDAP replica Instance type
4. Select a new name for the VM (e.g. ldap-rocky8) and click 'Next'
5. Use the following inputs for the VM and then click 'Next' until the deployment starts:
   
   1. version: 8
   2. plan: eo1.medium
   3. networks: private
   4. security group: ldap

...

Migrate from Rocky 8 to Rocky 9

...

1. Go to an Ubuntu 22 VM and select 'Run Workflow'
   
2. Select the 'Switch Interfaces of two VMs using Openstack Applicaitons Credentials'
   
3. Insert inputs and run the workflow Image Removed Image Added where you provide:
   1. OLD VM in this case is the OLD LDAP machine name
   2. NEW VM in this case is the NEW LDAP machine name
   3. Security Group Name:  ldap
   4. Openstack Application Credentials ID and Secret

...

1. ssh to ssh-proxy in your tenancy
2. ssh using DNS to the new LDAP machine
3. Run sudo ipactl status → verify the services are all up and running (if not, try sudo ipactl restart command)
4. From Morpheus go to Provisioning → Instances and deploy a new machine to test the enrollment to LDAP DNS is working correctly with the new LDAP machine.

...

1. SSH to the current LDAP machine you have
2. become root
3. Run the following 

   Code Block
   python3 /usr/libexec/ipa/oddjob/org.freeipa.server.config-enable-sid --add-sids

4. restart ipa 

   Code Block
   ipactl restart

5. finally kinit with the LDAP admin user ( you can find it in Morpheus Cypher → secret/ipaadmin_username, password/ipaadmin and try to run ipa commands to verify it worksthe above error is no more there) 

   Code Block
   kinit <ldap-admin-user>

6. Finish procedure for new rocky 8 replica
   1. replace the new LDAP IP with the IP of the interface of the old LDAP 

      Code Block
      ipa dnsrecord-mod HOSTED_ZONE ipa-ca --a-rec OLD_LDAP_IP ipa dnsrecord-mod HOSTED_ZONE NEW_LDAP_HOSTNAME --a-rec OLD_LDAP_IP

Resource: https://access.redhat.com/solutions/7052125

...