Chapter 32. Uninstalling the IdM CA service from an IdM server

If you have more than four Identity Management (IdM) replicas with the CA Role in your topology and you run into performance problems due to redundant certificate replication, (RH) recommends that you remove redundant CA service instances from IdM replicas. To do this, you must first decommission the affected IdM replicas completely before re-installing IdM on them, this time without the CA service.

Note

While you can add the CA role to an IdM replica, IdM does not provide a method to remove only the CA role from an IdM replica: the ipa-ca-install command does not have an --uninstall option.

Prerequisites

You have the IdM CA service installed on more than four IdM servers in your topology.

Procedure

Identify the redundant CA service and follow the procedure in Uninstalling an IdM server on the IdM replica that hosts this service.
On the same host, follow the procedure in Installing an IdM server: With integrated DNS, without a CA.

Select Your Language

Chapter 32. Uninstalling the IdM CA service from an IdM server

Quick Links

Help

Site Info

Related Sites

About

Red Hat legal and privacy links

Red Hat legal and privacy links

Language and Page Formatting Options

Chapter 32. Uninstalling the IdM CA service from an IdM server

Quick Links

Help

Site Info

Related Sites

Systems Status

About

Red Hat legal and privacy links

Red Hat legal and privacy links