Reverse DNS Permissions settings - Adaptive Applications - BlueCat Gateway - 23.2.3

BlueCat Distributed DDNS Administration Guide

Locale
English
Product name
BlueCat Gateway
Version
23.2.3
When configuring a Reverse DNS zone, there are two types of permissions:
Name Unique Description
Secure Client Updates Yes Allow or Deny host name updates using GSS-TSIG. Client GSS-TSIG updates will be allowed or denied from updating its own host record or PTR record.
Update to No Allow or Deny a specific identity to update a name. The supported identities are as follows:
  • TSIG Key: TSIG key name. Allow or deny an update signed by this key name. The update can be TSIG signed or GSS-TSIG signed.

  • AD Host ID: Kerberos identity (GSS-TSIG only). Allow or deny a GSS-TSIG update sent from this client name.

  • IP: Client's IP address. Allow or deny an update sent from this IP address. This update can be unsigned, TSIG signed, or GSS-TSIG signed.

  • CIDR: Client's network block. Allow or deny an update sent from this IP network. This update can be unsigned, TSIG signed, or GSS-TSIG signed.

Adding permissions

  1. Click New.

  2. Select one of the following permission types:
    • Secure Client Updates
    • Update to
  3. Select Allow or Deny to allow or deny the specific permission.

  4. Enter any additional information associated with the selected permission type.

  5. Click Save to save the permission.

Reordering permissions

Permissions are applied in the order in which they appear in they appear in the UI. You can change the order of permissions to ensure that permissions are enacted before others.

  1. Select the entry for a specific permission.

  2. Click to move a permission up and change the priority.

  3. Click to move a permission down and change the priority.

Deleting permissions

If you no longer require one or more permissions, you can delete the permissions.

  1. Select the checkbox next to one or more permissions.

  2. Click Delete to delete the selected permissions.