Abhishek Dasgupta via FreeIPA-users wrote:
Hello, If you can provide some pointers, it would be great! . Thanks
Best,
Abhishek
On Fri, Oct 21, 2022 at 6:17 PM Abhishek Dasgupta
<abhishekdasgupta005(a)gmail.com <mailto:abhishekdasgupta005@gmail.com>>
wrote:
Newbie here. I have a use-case where I need to delete host
principals only when no service principals exist on the host. Does
"ipa host-del" perform this check? If No, then when I run this
command would it delete the host principal and along with it delete
all the service principals associated ?
A service can't exist without an accompanying host. If you use host-del
it will delete the host and all services, no questions asked.
I tried to run the command on a host but got the following
error:
ipa: ERROR: Insufficient access: Insufficient 'delete' privilege to
delete the entry
What privileges are needed to run this command ? I was already kinit
as an admin.
In a stock install admin should have sufficient privileges to remove any
host that is not also an IPA server.
It will delete:
- the host
- all services
- revoke all certificates issued to the host/service
- all DNS records for the host/service
rob