Red Hat IdM not designed as a general-purpose DNS server?

Latest response


In one of the lessons of the official Red Hat course - RH362 Red Hat Security: Identity Management and Active Directory Integration, there is a following statement:

"There are some DNS limitations that need to be considered before starting the IdM installation. The integrated DNS server provided by IdM is not designed to be used as a general-purpose DNS server. Its main function is to support IdM deployment and maintenance. It does not support some of the advanced DNS features."

We were considering the migration of our current LDAP and DNS infrastructure under the IdM ( also for a better integration with a Red Hat Satellite).

Could someone please clarify the statement? Why is it not recommended to use IdM for general-purpose DNS? Which features are missing or may be limited?



I'd also like to see more detailed documentation from Red Hat about what's missing.

I guess it's a passthrough disclaimer from the FreeIPA project, and has to do with it not being designed to handle arbitrarily heavy traffic load.

It would be very convenient to be able to rely on this DNS service as a hidden master for provisioning a few internal forward and reverse zones, and replicate them to our production secondary DNS servers that can handle heavy client traffic load.