Getting started with Address Manager
Introduction
What's New in Address Manager v9.4.0
Supported hardware appliances
Logging in to Address Manager
User interface icons
Address Manager session timeout
Changing your password
Overview of the Address Manager main window
My IPAM overview
Opening the My IPAM page
Customizing My IPAM dashboards
Using widgets
Adding widgets
Managing widgets
Types of widgets
Tag Groups widget
Workflow Requests widget
Tasks widget
Favorites widget
Adding favorites
Server Statistics widget
Configuring the Server Statistics widget
Quick Actions widget
Configuring the Quick Actions widget
Performing a Quick Action
Adding host records using the Quick Action widget
Adding a static IPv4 address using the Quick Action widget
Adding a DHCP reserved IPv4 address using the Quick Action widget
Adding an alias record (CNAME) using the Quick Action widget
Adding a text record (TXT) using the Quick Action widget
Searching in Address Manager
Performing quick searches
Performing advanced searches
Performing response policy searches
Reference: Object search categories
Working with Address Manager data tables
Sorting tables
Customizing tables
Exporting table data
Viewing data
Viewing objects in the tree view
Grouping and ungrouping data
Setting the page size
Address Manager configuration
Configuring global settings
Making comments mandatory for object edits
Setting user session time out values
Adding a disclaimer to the login page
Displaying breadcrumbs
Setting Quick Action behavior
Setting system language
Enabling global custom reverse zone format
Address Manager system configuration
Viewing general system information
Viewing system metrics
Adjusting the time scale: Metrics Graph
Enabling network redundancy on Address Manager
Managing Address Manager software
Address Manager software updates
Prerequisites
Checking the available disk space
Deactivating deployment schedules
Disabling the backup service
Preserving custom scripts
Performing manual backups
Applying patches, hotfixes, or software updates
Resolving upgrade warnings and failures
Dual boot partitions
Address Manager disk partitions
Reverting to the previous software version
Accessing the GRUB command-line
Viewing version history
Viewing the update progress report
Configurations
Adding or editing a configuration
Viewing, setting as default, and deleting configurations
Managing the Monitoring Service
Monitoring Address Manager
Tag groups and tags
Creating tag groups and tags
Managing device types and devices
Creating device types and subtypes
Adding and editing devices
Adding devices using the Assign Selected IP Addresses page
Location support
Adding a custom location object
Assigning a location to multiple objects
Naming policies
Creating naming policy values
Creating naming restrictions
Creating naming policies
Reference: Regular expressions
Reference: Restricted values text file
Object types and user-defined fields
Viewing object types
Adding a user-defined field (UDF)
Reference: Object types
Admin
Category groups
Configuration
Deployment options
Deployment roles
Deployment scheduler
DHCP zones
DHCP class objects
DNSSEC
GSS Kerberos realms and principles
IPv4 objects
IPv6 objects
MAC pool objects
Naming policy objects
Resource records
Servers
Tags
Tasks
TFTP objects
TSIG keys
Vendor profiles
Views and zones
User-defined links
Adding a user-defined link type
Editing a user-defined link type
Adding user-defined links
Adding a user-defined link from the user-defined link type details page
Adding a user-defined link from the source object details page
Best practices for UDF and UDL names
Using the Address Manager / BlueCat Gateway Cross-jump
Prerequisites
Configuring the Workflow UDF type in Address Manager
Creating an object and enabling the Workflow UDF
Data migration
Migrating data
Downloading or deleting migration log files
Configuring DHCP alert settings
Viewing DHCP alert notifications
Workflow change requests
Working with workflow change requests
Adding tasks
HTTP and HTTPS support
Configuring HTTPS with a self-signed certificate
Configuring HTTPS with custom certificates
Configuring HTTPS with an existing custom certificate
Configuring HTTPS with a new custom certificate
Generating a Certificate Signing Request
Submitting the CSR to the Certificate Authority
Loading the signed server certificate into Address Manager
Re-applying certificates
Disabling HTTP or HTTPS
X.509 authentication
How X.509 authentication works
Adding an X.509 authenticator
Enabling X.509 authentication
Setting X.509 user access
Re-applying certificates to an existing X.509 authenticator
Managing Address Manager user security
Enabling a password policy
Enabling a login policy
Data Checker
Configuring and enabling the Data Checker
Viewing and overriding Data Checker issues
Configuring services
BlueCat Services Manager
Configuring Address Manager API for failover
Configuring NTP on Address Manager
Configuring SNMP on Address Manager
Enabling SNMP Service
Enabling SNMP Trap Service
Configuring SSH on Address Manager
Configuring syslog redirection on Address Manager
Restoring deleted objects
Viewing and restoring deleted objects
Data visualization
Collecting data
DHCP Heat Map
IP Allocation Overlay
IP Allocation Overlay use cases
DNS Deployment Role Overlay
DNS Deployment Role Overlay use cases
Users, groups, and access rights
User types and access types
User authentication
User groups
Managing Address Manager users
Adding or editing users
Locking and unlocking user accounts
Locking or unlocking a user account
Security and history privileges
Address Manager user groups
Creating a new user group
Managing users in user groups
Removing users from a user group
Adding LDAP user groups
Configuring Global Catalogue for Active Directory Authentication
Adding TACACS+ user groups
Access rights
Security privilege
History privilege
Address Manager object hierarchy and access right rules
Setting and changing default access rights
Editing access rights and overrides
Setting local object access rights
Viewing all access rights in the system
Setting administrative access rights for users and groups
Editing administrative access rights
Deleting access rights and overrides
Viewing user session details
Adding external authenticators
LDAP
Enabling SSL on LDAP
Kerberos and Active Directory
RADIUS and RSA SecurID
TACACS+
Configuring TACACS+ shell authentication
Identity and Access Management
Single Sign-On
Setting up Single Sign-On
Setting up Single Sign-On after performing a new installation of Address Manager
Configuring HTTPS in Address Manager
Configuring Address Manager as a Service Provider
Configuring Address Manager as a Relying Party
Creating SSO groups
Converting LDAP groups into SSO groups
Converting TACACS+ groups to SSO groups
Configuring the IdP metadata and Enabling the SSO connection
Testing the Single Sign-On Connection
Enabling SSO Enforced Mode
Setting up Single Sign-On on an Existing Address Manager
Converting User groups into SSO groups
Configuring Address Manager as a Service Provider
Configuring Address Manager as a Relying Party
Configuring the IdP metadata and Enabling the SSO connection
Testing the Single Sign-On Connection
Enabling SSO Enforced Mode
OAuth API authorization
Enabling OAuth in Address Manager
Configuring the Authorization Server
Testing the OAuth Environment
Single Sign-On with Database Replication
Single Sign-On and OAuth Troubleshooting
IP address space
Overlapping IP space
Enabling and disabling IP Overlap Detection
Defining IP space use statistics
Working with IPv4 blocks
Adding or editing an IPv4 block
Deleting IPv4 blocks
Resizing, splitting, and moving IPv4 blocks
Adding a parent block
Merging IPv4 blocks
Finding the first available IPv4 block
Finding the first available IPv4 network in an IP block
Finding the first unassigned IPv4 address
Creating IPv4 block partitions
Assigning an IPv4 template to an IPv4 block
Unassigning an IPv4 template from an IPv4 block
Applying an IPv4 template to an IPv4 block
Working with IPv4 networks
Creating a new IPv4 network
Resizing an IPv4 network
Splitting IPv4 networks
Moving and merging IPv4 networks
Assigning an IPv4 template to an IPv4 network
Unassigning an IPv4 template from an IPv4 network
Applying an IPv4 template to an IPv4 network
Refreshing the DHCP lease state
Working with IPv4 templates
Creating IPv4 Templates
Setting access rights for IP group settings
Assigning IPv4 Templates
Unassigning IPv4 Templates
Editing IPv4 Templates
Applying an IPv4 Template to a Single IPv4 object
Applying an IPv4 Template to Multiple IPv4 objects
Deleting IPv4 Templates
Managing IPv6
IPv6 address space
IPv6 Local Address Space
IPv6 Global Unicast Address Space
Creating the Global ID in the Local Address Space
Creating the Global Routing Prefix in the Global Unicast Address Space
Creating 127-bit networks in the Global Unicast Address Space
Creating IPv6 addresses in /127 network
Working with IPv6 blocks and networks
Adding, editing, and deleting IPv6 blocks
Adding a parent IPv6 block
Adding IPv6 networks
Splitting IPv6 blocks and networks
Resizing IPv6 blocks and networks
Moving IPv6 blocks and networks
Partitioning an IPv6 block
Managing IP addresses
Address types
IP grouping
Managing IP groups
IP groups and access rights
Assigning IPv4 addresses
IP address allocation types
Changing the state of IP addresses
Assigning a host name to a network gateway
Moving IPv4 addresses
Clearing an IPv4 address assignment
Managing abandoned IPv4 addresses
Editing abandoned IPv4 addresses
Changing the state of abandoned IPv4 addresses
Deleting abandoned IPv4 addresses
Creating IPv6 addresses
Assigning IPv6 addresses
Editing, moving, and clearing IPv6 address assignments
IP address discovery and reconciliation
Managing IP reconciliation policies
Specifying DNS servers for IP address discovery and reconciliation
Specify DNS servers at the configuration level
Specifying DNS servers in IP reconciliation policies
Creating and editing IP reconciliation policies
Removing IP reconciliation policies
Running, activating, and deactivating IP reconciliation policies
Viewing discovered IP addresses
Reconciling IP addresses
Managing IP reconciliation logs
Setting the IP reconciliation logging levels
Downloading the IP reconciliation log file
Reference: IPv4 Reconciliation Summary page
SSH discovery
Using the SSH discovery utility
Reconciling the discovered device information into Address Manager
Refreshing the DHCP lease state
Dynamic network configuration
Streamlined DHCP
DHCPv4
Adding DHCPv4 ranges
Merging DHCP ranges
Resizing DHCPv4 ranges
Assigning an IPv4 template to a DHCPv4 range
Unassigning an IPv4 template from a DHCPv4 range
Applying an IPv4 template to an DHCPv4 range
Assigning an IPv4 template to a DHCPv4 reserved address
Unassigning an IPv4 template from a DHCPv4 reserved address
Applying an IPv4 template to an DHCPv4 reserved address
Viewing DHCPv4 lease history
DHCPv4 deployment options
Adding DHCPv4 client deployment options
Reference: DHCPv4 Client options
Adding DHCPv4 service deployment options
Reference: DHCPv4 Service options
DHCP custom options
Adding DHCP custom options
DHCP Raw options
Adding DHCPv4 Raw options
DHCP vendor profiles and options
Creating a DHCP vendor profile
Adding option definitions to a DHCP vendor profile
Adding DHCP vendor deployment options
DHCP match classes
Creating a match class
Configuring match class values
Assigning a DHCP deployment role to a match class
Deployment options for DHCP match classes
Shared networks
Creating tag groups and tags
Associating an object tag group with a configuration
Associating a network with a shared network object
DHCPv6
Router Discovery (RD) advertisements in the IPv6 network
Configuring IPv6 on a DNS/DHCP Server
Configuring DHCPv6 on Address Manager
Adding and editing DHCPv6 ranges
Viewing DHCPv6 lease history
Deploying and verifying DHCPv6
Configuring DHCPv6 reserved addresses
DHCPv6 limitations
DHCPv6 client and service deployment options
Adding DHCPv6 client deployment options
Adding DHCPv6 service deployment options
Reference: DHCPv6 Service options
DHCP Raw options
Adding DHCPv6 Raw options
DHCPv6 High Availability
Configuring DHCPv6 High Availability
DHCP failover
About failover states
Configuring DHCP failover
Modifying DHCP failover parameters
DHCP deployment roles
Adding DHCPv4 deployment roles
Adding DHCPv6 deployment roles
Creating MAC pools
Adding and editing a MAC address to a device
MAC pool associations
Configuring MAC pool options
Maintenance of unassociated MAC addresses
TFTP service
Adding TFTP groups
Adding and moving folders and files in TFTP groups
Adding TFTP deployment roles
DNS
Managing DNS views
Adding and editing DNS views
Deleting DNS views
Renaming a DNS view
Creating an Internal Root Zone
View deployment order and access control lists
Access control lists
Adding and editing access control lists
Applying a DNS access control list
Viewing the objects linked to a DNS access control list
Deleting a DNS access control list
Managing DNS zones
Adding DNS zones
Editing DNS zones
Deleting a DNS zone
Renaming a DNS zone
Moving a DNS zone
DNS zone templates
Creating zone template
Setting options in a zone template
Assigning the zone template to a DNS zone
Updating the template on a DNS zone
DNS reverse zones
Creating reverse zones
Disabling empty DNS zones
Setting reverse zone name format
Changing reverse zone name format
Setting deployment roles at IP block or network levels
Setting a DNS server to be authoritative for reverse zones only
Delegating reverse zones
Creating a partial Class C reverse zone
How Address Manager deploys classless IPv4 space
DNS deployment roles
Adding DNS deployment roles
Reference: DNS deployment roles
DNS deployment options
Managing DNS deployment options
Reference: DNS deployment options
Update Policy DNS deployment option
Adding deployment options in DNS raw format
Configuring DNS response rate limiting
Defining DNS option inheritance settings
Secondary Zone Notifications deployment option
How it works
Prerequisites
Using the Secondary Zone Notifications deployment option in Address Manager
Configuring the Secondary Zone Notifications deployment option in Address Manager
Disabling Secondary Zone Notifications
Replacing the server sending Secondary Zone Notifications
Deleting a configured Secondary Zone Notifications deployment option
Managing resource records
Adding a Host (A/AAAA) record
Editing a Host (A/AAAA) record
Deleting a Host (A/AAAA) record
Adding an Alias (CNAME) record
Adding an Alias (CNAME) record from the host or alias record details page
Add Alias Records Confirmation
Editing an Alias (CNAME) record
Adding a Text (TXT) record
Editing a Text (TXT) record
Adding a Host Info (HINFO) record
Editing a Host Info (HINFO) record
Adding a Service (SRV) record
Editing a Service (SRV) record
Adding a Mail Exchanger (MX) record
Editing an MX record
Adding a Naming Authority Pointer (NAPTR) record
Editing a NAPTR record
Adding a Generic record
Editing Generic records
Reference: Generic resource record types
Dynamic resource records
Adding Start of Authority records
Reference: How SOA serial numbers are calculated
Reference: SOA serial numbers limitation
Reference: Changing the SOA primary server
Importing DNS records
Adding external hosts
Deleting external hosts
Bulk DNS updates
Performing a bulk DNS update
Reference: Bulk DNS update CSV file
Naming policies and DNS views and zones
Linking a naming policy to a DNS view or zone
Unlinking a naming policy from a DNS view or zone
Creating resource records with a naming policy
Zone transfers
Configuring zone transfer deployment options
Allow Zone Transfers
Allow Notify
Notify and Notify Additional Servers
Notifying specific servers
ENUM zones
Creating an ENUM zone
Working with ENUM zone prefixes
Adding numbers to an ENUM zone
Deleting an ENUM number
DNS64
Configuring DNS64 support
DNS64 and reverse mapping
Dynamic DNS
Multi-threaded DDNS updates
DDNS conflict resolution
TSIG keys
Adding a TSIG key
Viewing objects linked to a TSIG key
Rolling over a TSIG key
DHCP zone groups and zones
Adding a DHCP zone group
Setting the deployment servers for a DHCP zone group
Adding a DHCP forward zone
Adding DHCP reverse zones
DNS forwarding
Configuring DNS forwarding
Setting a forwarding DNS deployment option
Defining a forwarding policy DNS deployment option
Disabling forwarding for child zones
Configuring DNS zone forwarding
Configuring forwarding zones
Stub zones
Configuring stub zones
Recursive DNS
DNS cache management
DNS zone delegation
DNS zone delegation scenarios
DNSSEC
DNSSEC overview
DNSSEC with Address Manager and DNS/DHCP Server
Creating a DNSSEC authoritative server
Creating a DNSSEC signing policy
Applying DNSSEC signing policies to DNS zones
Applying a DNSSEC signing policy to a forward zone
Applying a DNSSEC signing policy to a reverse zone
Viewing the zones linked to a DNSSEC signing policy
Disabling zone signing
Unsecuring zones
Managing DNSSEC key rollover and generation
Automatic key generation
Manual key generation
Emergency key rollover
Specific DNSSEC keys
Managing DNSSEC keys
Emailing keys as DNS Keys
Alternate emergency key rollover method
Deleting a DNSSEC key
Configuring a DNSSEC validating server
DNSSEC Validation deployment option
Automatic DNSSEC Validation
Manual DNSSEC Validation
DNSSEC Trust Anchors
Additional DNSSEC deployment options
Creating a chain of trust for delegated third-party zones
HSM
DNSSEC with HSM
HSM requirements
Components
Network environment
OPTIONAL: Copying Security World files
Configuring HSM
Creating an HSM configuration
Adding HSM servers to an HSM configuration
Configuring HSM Security World
Joining Address Manager to the Security World
Enabling HSM on DNS Servers
OPTIONAL: HSM with xHA
Creating a DNSSEC-HSM signing policy
Assigning the DNSSEC-HSM signing policy
Deploying DNS with a DNSSEC-HSM signing policy
Working with HSM
Modifying an HSM configuration
Viewing HSM configuration details
Editing an HSM configuration
Deleting an HSM configuration
Managing the Security World
Updating the Security World configuration
Updating the Security World for Address Manager
Removing Address Manager from the Security World
Managing HSM servers
Viewing HSM server details
Editing HSM servers
Deleting HSM servers
Deleting multiple HSM servers
Monitoring HSM servers
HSM failover and disaster recovery
Managing HSM-enabled DNS servers
Editing HSM-enabled DNS Servers
OPTIONAL: Editing an HSM-enabled xHA pair
Disabling HSM-enabled DNS Servers
Enabling HSM-enabled DNS Servers
Replacing HSM-enabled DNS Servers
OPTIONAL: Replacing HSM-enabled DNS/DHCP Servers in an xHA pair
Disabling HSM on managed DNS Servers
Performing dynamic updates with DNSSEC-HSM
Troubleshooting
Cannot deploy DNS service
HSM tries to restart DNS service even if DNS service is disabled
Disconnected HSM servers won't be added to HSM configuration
HSM server failure
DANE
Requirements
Limitations
TLSA records
DANE and SMTP
Managing TLSA records
Table filtering
Filtering data in tables
Filtering IPv4 blocks and networks
Filtering IPv4 addresses
Filtering DNS zones
Filtering resource records
Filtering external host records
Filtering Response Policies
Filtering location objects
BlueCat Threat Protection
About Response Policies
BlueCat Threat Protection with BlueCat Security Feed
BlueCat Security Feed service requirement
Configuring BlueCat Threat Protection using BlueCat Security Feed
Uploading the BlueCat Security Feed license
Enabling BlueCat Security Feed
Adding Response Policy zones with BlueCat Security Feed
Adding a DNS deployment role to a DNS Response Policy Zone
BlueCat Threat Protection with local Response Policies
Configuring local Response Policies
Adding local Response Policies
Adding a Response Policy Item
Uploading a Response Policy file
Adding Response Policy Zones with local Response Policies
Adding a DNS deployment role to a DNS Response Policy Zone
Using local Response Policies with BlueCat Security Feed
Active Directory integration
Dynamic Domain Controller registration
Integrating Address Manager into Active Directory
Configuring Microsoft Domain Controllers
Benefits of moving Active Directory DNS to Address Manager and DNS/DHCP Server
Active Directory DNS records
Configuring GSS-TSIG
DHCP Server updating Windows DNS
Prerequisites
Supported versions
Windows system configuration
Creating an AD user account for a DHCP server
Setting user account options
Optional: Mapping the service principal name by running the ktpass command
Configuring zones in Windows DNS
Address Manager system configuration
Creating and configuring a Kerberos Realm
Defining Key Distribution Centers (KDCs)
Defining a DHCP service principal
Creating DDNS-related deployment options
Adding a DHCP zone group
Adding a DHCP zone declaration
Configuring deployment servers
Associating the service principal
Verifying successful configuration
Updating DNS Servers with Active Directory
Prerequisites
Creating an AD user account for the dynamic update role on the Domain Controller
Configuring a primary role for the BlueCat DNS server
Configuring the Kerberos Service principal in Address Manager
Associating the service principal
Configuring zones to accept GSS-TSIG updates
Configuring Domain Controllers to update the primary DNS Server
Time synchronization
Managing servers
Supported servers
Supported hardware appliances
Multi-version DNS/DHCP Server compatibility
Address Manager to DNS/DHCP Server protocol compatibility
DNS/DHCP Server to DNS/DHCP Server protocol compatibility
Getting started with DNS/DHCP Servers
Basic DNS/DHCP Server configuration
Adding DNS/DHCP Servers to Address Manager
Deleting DNS/DHCP Servers
Configuring Dedicated Management
Removing a DNS/DHCP Server from Address Manager control
Enabling Dedicated Management
Disabling Dedicated Management
Enabling DNS/DHCP Server network redundancy from the Address Manager user interface
Disabling DNS/DHCP Server network redundancy
Disabling network redundancy when adding a DNS/DHCP Server
Disabling network redundancy when replacing a DNS/DHCP Server
Configuring DNS/DHCP Server services
BlueCat Services Manager
Service Configuration Override
Modifying DNS/DHCP Server services subject to service configuration override
Anycast
Anycast with VLAN interfaces
SNMP Traps with Anycast
Anycast BGP
Before you start
Configuring Anycast BGP
BGP Command Line Interface
Anycast OSPF
Anycast RIP
DNS/DHCP Server firewall
Additional IP addresses
Configuring additional IP service addresses
Configuring loopback addresses
Configuring network routes
DHCP with multiple IP service addresses
Setting the Server Identifier DHCP Service option
Network Time Protocol
Simple Network Management Protocol
Enabling SNMP service on DNS/DHCP Servers
Enabling SNMP Trap Service on DNS/DHCP Servers
Secure Shell
TACACS+ authentication
Syslog redirection on DNS/DHCP Server
Enabling IBM QRadar and HP ArcSight syslog redirection
DNS Edge Service Point v3 on DNS/DHCP Server
Before enabling a DNS Edge Service Point v3 instance
Using the DNS/DHCP Server's existing DNS configuration
Enabling DNS Edge Service Point v3 on multiple DNS/DHCP Servers
Prerequisites
Enabling a DNS Edge Service Point v3 instance
Configuring an additional IPv4 address
Configuring a DNS Edge Service Point v3 instance
Viewing the DNS Edge Service Point v3 health and configuration
Enabling a DNS Edge Service Point v3 in Anycast
Viewing the Anycast DNS Edge Service Point v3 health and configuration
Enabling a DNS Edge Service Point v3 in a HA setup
Creating the service point enabled HA pair
Managing the service point enabled HA pair
Disabling a DNS Edge Service Point v3 instance
Custom firewall rules
DNS Edge Service Point v3 on DNS/DHCP Server upgrade scenarios
Health Telemetry
DNS Activity
Configuring DNS Activity
Reference: DNS Activity event message examples
DNS query event
DNS response event
DNS update query event
DNS update response event
Scenarios: DNS Activity event messages are not generated
DNS Statistics
Configuring DNS Statistics
Reference: DNS Statistics event message example
DHCP Statistics
Configuring DHCP Statistics
Reference: DHCP Statistics event message example
DNS Resolver
Gateway Service on BDDS appliances
Prerequisites and technical specifications
Limitations
Best practices
Data and Logs
BAM in replication
Deploying BlueCat Gateway from a cloud or local repository
Configuring Gateway Service on a BDDS appliance
Verifying Gateway Status
Launching BlueCat Gateway, Adaptive Application, or Plugin
Deploying custom images to a Production Environment
Managing containers
Disabling Gateway Service
Upgrading a container
Upgrading a container via a cloud or local repository
Upgrading a custom container in a Production Environment
Verifying the upgrade
Troubleshooting
Monitoring DNS/DHCP Servers
Enabling monitoring services for DNS/DHCP Server
Configuring monitoring settings for a specific configuration
Viewing server status
Viewing server performance metrics for DNS/DHCP Server
Adjusting the scale of the graph
Viewing DNS/DHCP Server logs
Upgrading DNS/DHCP Server software
Preserving custom scripts
DNS/DHCP Server multi-version upgrade support
Copying files to new version
Viewing the upgrade status
Patching DNS/DHCP Servers
Uploading a DNS/DHCP Server patch to Address Manager
Applying a DNS/DHCP Server patch
Deleting a DNS/DHCP Server patch
Viewing DNS/DHCP Server patch history
Other DNS Server
Adding Other DNS Servers
Deleting Other DNS Servers
Changing the server profile of Other DNS Servers
BlueCat Cloud DNS Servers
Local Traffic Managers
Adding a Local Traffic Manager
Configuring loopback interfaces for F5 load balancing
BIG-IP DNS Servers
Adding a BIG-IP DNS Server
Adding a Listener Interface
Configuring DNS deployment roles for BIG-IP DNS Servers
Removing a BIG-IP DNS Server as the secondary of a DNS primary
Working with servers
Viewing deployment roles
Moving deployment roles
Configuring deployment options on a server
Connecting to a server
Configuring server interfaces
Adding a published server interface
Deleting server interfaces
Server diagnostics
Viewing DNS/DHCP service configurations
Starting, stopping, and restarting DHCP service
Configuring Server Groups
Creating a Server Group
Adding servers to a Server Group
Configuring deployment options on a Server Group
Deploying Server Group deployment options to a server
Removing servers from a Server Group
Deleting a Server Group
Configuring F5 servers and remote services
Automatically synchronize Address Manager with an F5 configuration
Configuring F5 resource pools
Clearing the DNS cache of LTM or BIG-IP DNS Servers
Monitoring BIG-IP DNS Servers and Local Traffic Managers
Controlling servers
Chains of servers
Server maintenance
Disabling servers
Removing a DNS/DHCP Server from Address Manager control
Replacing a server
Enabling a server
BlueCat Cloud DNS
Configuring BlueCat Cloud DNS
BlueCat Cloud DNS firewall requirements
Adding a BlueCat Cloud DNS server
Deleting a BlueCat Cloud DNS server
Securing BlueCat Cloud DNS with TSIG keys
Troubleshooting BlueCat Cloud DNS
Managing deployment
Address Manager multi-version deployment support
Pre-deployment validation
Types of deployment
Manual deployment
Performing full deployment
Performing quick deployment
Automated deployment
Deployment schedules
Activating or deactivating deployment schedules
Validating deployment
Setting validation options for a configuration
Setting server level validation options
Performing manual deployment validation
Scheduling deployment validation
Setting email notification for deployment data validations
Deployment validation order
Tracking deployment
Cancelling queued deployments
Deployment order
Deployment Troubleshooting
Managing events, transactions, and reports
Managing Events
Viewing system events
Viewing deployment events
Transaction history
Viewing transaction history
Searching transaction history
Managing reports
Adding and editing reports
Report types
Adding a custom logo to reports
Resetting the report logo
Generating reports
Deleting reports
Scheduling reports
Activating and deactivating scheduled reports
Verifying the status of a scheduled report generation
Deleting a scheduled report
Managing notification groups
Creating notification groups
Editing notification groups
Deleting notification groups
Managing users, user groups, and tags with notification groups
Adding users, user groups, and applying tags
Applying tags to users and groups
Deleting users and groups from the notification group
Subscribing to event levels
Reference: Event level subscriptions
Managing Address Manager logs
Viewing Address Manager logs
Downloading log files
Setting the logging level
Deleting selected database or migration log files
Administration Console
Using the Administration Console
Logging in to or out of the Administration Console
Getting helpful command information
Configuration mode
Updating the license
Rebooting and powering-off
Serial port
Enabling and disabling the Serial port
Setting the Baud Rate
Resetting HTTP service
User management
Password management
Setting the root password
Setting the admin password
Setting the bluecat password
Setting the portal password
Setting the system password
Setting the JMX password
Configuring additional options
Database settings
Viewing database settings
Configuring database settings
Adding host access to the database
Remove host access to the database
Interface settings
Setting an IPv4 address
Setting an IPv6 address
Setting the Primary Service IP address
Removing an IPv4/IPv6 address
Setting the default gateway
Configuring speed, duplex, and auto-negotiation settings
Resetting interface configurations
Network redundancy
Disabling Address Manager network redundancy from the Administration Console
Configuring DNS/DHCP Server network redundancy from the Administration Console
Adding a bonding interface
Removing a bonding interface
Network settings
Setting the default gateway
Removing the default gateway
Resetting network configurations
System settings
Setting the host name
Enabling STIG compliance
Disabling STIG compliance
Software version
Viewing software version for next system boot
Setting software version for next system boot
System time
Setting the time zone
Setting the time
Setting the date
Static routes
Adding static routes
Removing static routes
DNS Name Servers
Adding Name Servers
Removing a name server
Mail service
Configuring Mail service
Address Manager firewall
Configuring firewall settings
DNS/DHCP Server configuration and system settings
Removing a DNS/DHCP Server from Address Manager control
Setting the Administration password
Resetting the deployment password
Resetting the deployment certificate
Enabling Dedicated Management
Disabling Dedicated Management
Viewing xHA status from the Administration Console
Configuring the xHA Backbone Connection from the Adminstration Console
DHCP failover
Forcing the DHCP failover state
Performing a DHCP failover recovery
Querylogging
Enabling or disabling querylogging
Adding querylogging channels
Available channel categories for querylogging
Modifying querylogging channels
Deleting querylogging channels
Configuring VLAN tagging from the Administration Console
Adding a VLAN interface
Setting the Primary Service IP address
Modifying VLAN interfaces
Removing VLAN interfaces
Enabling port bonding when VLANs are already created
Removing the factory default address from eth0/bond0
Crossover high availability (xHA)
About xHA
How xHA works
xHA configuration scenarios
xHA with Dedicated Management enabled or disabled
xHA with Dedicated Management Disabled
xHA with Dedicated Management enabled
xHA with Dedicated management enabled and NAT
xHA with server groups
Prerequisites for xHA
Address Manager multi-version xHA support
Managing xHA
Using the xHA backbone connection
Creating an xHA pair
Deploying data to an xHA pair
Configuring DNS/DHCP Server services on an xHA pair
Viewing xHA status
Viewing server logs for an xHA pair
xHA diagnostics
Viewing DNS/DHCP service configurations
Editing an xHA pair
Adding or removing the xHA backbone connection
Updating or applying patches to servers in an xHA pair
Repairing xHA
Rules for repairing xHA
Breaking an xHA pair
Breaking xHA with server groups
xHA failover
VLAN tagging
Using VLAN tagging
Prerequisites
Configuring VLAN interfaces
Adding a VLAN interface from the user interface
Deleting a VLAN interface from the user interface
Configuring VLAN tagging from the Administration Console
Adding a VLAN interface
Setting the Primary Service IP address
Modifying VLAN interfaces
Removing VLAN interfaces
Enabling port bonding when VLANs are already created
Removing the factory default address from eth0/bond0
Configuring VLAN interfaces with xHA
xHA with VLANs and Dedicated Management enabled
How does xHA work in a VLAN environment?
Adding VLAN interfaces to xHA pairs from the Address Manager user interface
DHCP with VLAN and xHA
Address Manager database
Database backup
Creating backup profiles and scheduling backups
Viewing backup profiles
Copying backup profiles
Deleting backup profiles
Enabling or disabling the backup service
Performing manual backups
Viewing backup files
Viewing the list of backup files for a specific backup schedule
Viewing the backup file version information
Viewing backup status
Restoring the database
Database maintenance
Streaming Replication
Replicating the database for Address Manager disaster recovery
Address Manager scalability with database replication
Configuring database replication
Configuring a trust relationship in Address Manager
Refreshing Address Manager keys in a trust relationship
Removing an Address Manager Server from the trust relationship
Configuring database replication from the Address Manager user interface
Modifying database replication from the user interface
Viewing database replication details
Monitoring database replication latency
Performing database replication failover
Database replication failover behavior
Breaking and resetting database replication
Forcibly resetting database replication
Replication troubleshooting reset scenarios
Database replication troubleshooting
Database Cleaner
Rules for merging duplicate host records
Running the database cleaner
Re-indexing the database
Improving audit data exporting and disk usage maintenance
Retaining audit data
Configuring Audit Data Retention
Exporting audit data to an external database
Enabling Audit Data Export
HA Active Health Status
STIG
STIG compliance
Setting the bluecat password
Enabling and disabling STIG compliance
Enabling STIG compliance
Disabling STIG compliance
Resetting a locked user account with STIG enabled
Locking the console
Monitoring Address Manager and DNS/DHCP Server
Monitoring Address Manager
Configuring Address Manager monitoring
Monitoring Address Manager
Configuring SNMP on Address Manager
Enabling SNMP Service
Enabling SNMP Trap Service
Configuring syslog redirection on Address Manager
Monitoring Address Manager health
Monitoring notification processing
Monitoring DNS/DHCP Server
Configuring DNS/DHCP Server monitoring
Enabling monitoring services for DNS/DHCP Server
Enabling SNMP service on DNS/DHCP Servers
Enabling SNMP Trap Service on DNS/DHCP Servers
SNMP Traps with Anycast
Syslog redirection on DNS/DHCP Server
Enabling IBM QRadar and HP ArcSight syslog redirection
Monitoring DNS/DHCP Server health
Monitoring notification backlog on BDDS
Network requirements
Address Manager service ports
DNS/DHCP Server firewall requirements
Address Manager Data Checker Rules
Error Messages
Warning Messages
Information Messages
iDRAC
Configuring iDRAC
Configuring static IPv4 settings
Configuring static IPv6 settings
Setting the iDRAC web access password
Connecting to iDRAC remotely
Using the web browser as a Virtual Console
Logging out of iDRAC
Reference: iDRAC6 web interface
SNMP Manager setup and BlueCat MIB files
SNMP Manager setup
BlueCat MIB files
Address Manager polled objects
DNS/DHCP Server polled objects
DNS/DHCP Server traps
Reference: SNMP trap notification messages
Reference: IPv6 support
DNS/DHCP Server RFC compliance
Gateway Service will be treated like any other service on BDDS, i.e., upon BAM
failover, all the data is replicated to the BAM secondary.
On the first run of the container, the user should add the IP addresses of all
of the BAMs in replication to the General Configuration workflow in the Gateway
UI (General Configuration > BAM
Settings ), so Gateway will have the IPs stored if a BAM failover
occurs.