Creating discovery configurations - BlueCat Edge - Service Point v4.x.x

BlueCat Edge User Guide

Locale
English
Product name
BlueCat Edge
Version
Service Point v4.x.x

To use Edge Resolver, you must first specify the configuration information for the DNS data that you would like to discover.

Before proceeding to configure the discovery configuration, you must create secrets in the secrets manager. These secrets are used to enter the username and password used to authenticate and discover DNS data. For more information, refer to Secrets manager.

To configure the discovery configuration

  1. In the top navigation bar, click and select Discovery service > Configurations.
  2. To add a new discovery configuration, click New.
  3. Enter the name of the discovery configuration.
  4. Under Polling interval, enter the interval at which the source of the DNS data is polled. The minimum value is 60 seconds.
  5. Under On discovery failure, select one of the following options to determine how the global discovery configuration handles failures to retrieve data:
    • Keep last data (safe): the discovery configuration uses the last successfully retrieved set of DNS data.
    • Overwrite last data: the discovery configuration overwrites the DNS data from the last successful retrieval.
  6. Under BAM authentication, enter the following BlueCat Address Manager (BAM) information:
    • Scheme: select the scheme used to access the Address Manager server.
    • FQDN: enter the FQDN of the Address Manager server.
    • API username: select the value of the API user key credential stored in Edge secrets manager. For more information on Edge secrets manager, refer to Secrets manager.

      Once you have selected a value, click Apply to populate the field.

    • API password: select the value of the API password key credential stored in Edge secrets manager. For more information on Edge secrets manager, refer to Secrets manager.

      Once you have selected a value, click Apply to populate the field.

    • Signing certificate: upload the Address Manager server certificate or signing certificate. This field is required if the Scheme is https and Address Manager uses a self-signed certificate. Otherwise, the field should be omitted.
      Note: The file must be in PEM format.
  7. Under BAM configurations, specify one or more Address Manager configurations to discover DNS data from:
    • Configuration: enter the name of the Address Manager configuration in which the DNS data can be found.
    • View: enter the name of the Address Manager DNS view in which the DNS data can be found.
    • On discovery failure: select one of the following options to determine how the discovery configuration handles failures to retrieve data from this Address Manager configuration:
      • Keep last data (safe): the discovery configuration uses the last successfully retrieved set of DNS data.
      • Overwrite last data: the discovery configuration overwrites the DNS data from the last successful retrieval.
      Note: The discovery failure options configured per BAM configuration override the discovery option failures configured at the global level. This field is optional.
    • Click to add the Address Manager configurations.
  8. Click Save.

Once you have created the discovery configuration, an associated discovered domain list is automatically created. The discovered domain list are used as a Match List for discovered namespaces, and contain the domains for which the DNS resources will be used. The discovered DNS resources are contained by a snapshot uploaded to Edge Cloud by discovery instance, and downloaded by DRS and used by Edge Resolver.