adcli will automatically grab SRV records to decide on a DC to connect to if not given an explicit DC FQDN.
With this change it would be as simple as not providing a :domain_controller value in the config to exploit this functionality.
This would allow for provisioning machine accounts even during AD DC updates or migrations.
adcli will automatically grab SRV records to decide on a DC to connect to if not given an explicit DC FQDN.
With this change it would be as simple as not providing a
:domain_controllervalue in the config to exploit this functionality. This would allow for provisioning machine accounts even during AD DC updates or migrations.References:
connect_to_directoryfor connecting to the AD directory: https://cgit.freedesktop.org/realmd/adcli/tree/library/adconn.c#n958disco_dance_if_necessaryfor discovering connection properties: https://cgit.freedesktop.org/realmd/adcli/tree/library/adconn.c#n115adcli_disco_domainfor finding all available DCs in a domain: https://cgit.freedesktop.org/realmd/adcli/tree/library/addisco.c#n712