Chapter 12. Uninstalling an IdM client

As an administrator, you can remove an Identity Management (IdM) client from the environment.

12.1. Uninstalling an IdM client

Uninstalling a client removes the client from the Identity Management (IdM) domain, along with all of the specific IdM configuration of system services, such as System Security Services Daemon (SSSD). This restores the previous configuration of the client system.


  1. Run the ipa-client-install --uninstall command:

    # ipa-client-install --uninstall
  2. Remove the DNS entries for the client host manually from the server:

    # ipa dnsrecord-del
    Record name: old-client-name
    Zone name:
    No option to delete specific record provided.
    Delete all? Yes/No (default No): yes
    Deleted record "old-client-name"