version: "3.9"
services:
  freeipa:
    image: "freeipa/freeipa-server:centos-8"
    restart: "unless-stopped"
    privileged: true
    read_only: true
    volumes: 
      - "/var/lib/ipa-data:/data:Z"
      - "/var/lib/ipa-data/z/tmp:/tmp"
      - "/sys/fs/cgroup:/sys/fs/cgroup:ro"
    hostname: id.libraryofcode.org
    sysctls:
      - net.ipv6.conf.all.disable_ipv6=0
    ports:
      - "7810:80/tcp"
      - "7811:88/tcp"
      - "7812:389/tcp"
      - "7813:443/tcp"
      - "7814:123/udp"
      - "7815:464/tcp"
      - "7816:636/udp"
      - "7817:464/udp"