Adding a DHCP zone declaration - BlueCat Integrity - 9.4.0

Address Manager Administration Guide

Locale
English
Product name
BlueCat Integrity
Version
9.4.0

A DHCP zone declaration must be created for every forward and reverse zones to be updated. You need to add forward and reverse DHCP zones in Address Manager with at least the zone name and IP address of the Windows DNS server to update the zones in each domain.

To sign DDNS updates for a DHCP forward zone and reverse zone:

  1. From the configuration drop-down menu, select a configuration.
  2. Select the IP Space tab. Tabs remember the page you last worked on, so select the tab again to ensure you're on the Configuration information page.
  3. Click the DHCP Settings tab.
  4. Under DHCP Zone Groups, click the name of a previously created DHCP zone group. The Details tab for the DHCP zone group opens.
  5. Click the DHCP Zone Declarations tab.
  6. Add a forward zone and a reverse zone.
    • To add a DHCP forward zone:
      1. Under Forward Zones, click New and select Forward DHCP Zone.
      2. Under General, select Third Party and enter a fully-qualified domain name for a Windows DNS zone in the Zone Name field.
      3. In the Primary DNS Server IP Address field, enter the IP address for the zone’s primary DNS server.
      4. In the Secondary DNS Server IP Address field, enter the IP address for the zone’s secondary DNS server.
      5. To sign DDNS updates using GSS-TSIG for the zone, select the Sign DDNS Updates check box, and select Using GSS-TSIG.
        • If you are updating a zone on a DNS server located in a child domain different from the default Kerberos realm, you must specify the correct Kerberos realm for this child domain. To change the DNS Kerberos realm, select the Modify DNS Kerberos Realm check box and choose a realm for the child domain from the Realm drop-down list.
      6. Under Change Control, add comments, if required.
      7. Click Add.
    • To add a DHCP reverse zone:
      1. Under Reverse Zones, click New and select Reverse DHCP Zone.
      2. Under General, select Third Party and enter a fully qualified domain name in the Zone Name field.
      3. In the Primary DNS Server IP Address field, enter the IP address of the Windows DNS server with reverse zone.
      4. In the Secondary DNS Server IP Address field, enter the IP address of a second Windows DNS server.
      5. To sign DDNS updates using GSS-TSIG for the reverse zone, select the Sign DDNS Updates check box, and select Using GSS-TSIG.
        • If you are updating a zone on a DNS server located in a child domain different from the default Kerberos realm, you must specify the correct Kerberos realm for this child domain. To change the DNS Kerberos realm, select the Modify DNS Kerberos Realm check box and choose a realm for the child domain from the Realm drop-down list.
      6. Under Change Control, add comments, if required.
      7. Click Add.