The following section outlines changes that have been made between discovery instance service versions:
25.3.0
- Introduces support for the Discovery Instance to use VM-assigned roles for discovery
- Introduces enhancements to the discovery of Address Manager
objectsDiscovery instance has been updated to improve the discovery of Address Manager zones and servers responsible for a given domain. The following new options have been added to Address Manager discovery configurations:
- Also forward queries to 'Other DNS
servers'—when the discovery configuration
discovers servers within Address Manager with the Other DNS
Server role, servers with this role are treated the same
way as BlueCat DNS/DHCP Servers and queries will also be
forwarded to servers with the Other DNS Server role.Note: If you enable this field, Forward queries for delegated zones to 'Other DNS servers' is also enabled.
- Discovery hidden primary—the discovery configuration also discovers servers within Address Manager with the Hidden primary role and uses those servers for forwarding queries.
- Discovery stealth secondary—the discovery configuration also discovers servers within Address Manager with the Stealth secondary role and uses those servers for forwarding queries.
- Forward queries for delegated zones to 'Other DNS servers'—when the discovery configuration discovers a zone with roles only pointing to a server with the Other DNS Server role, treat the zone as a delegation zone and forward queries to it directly from BlueCat Edge.
- Also forward queries to 'Other DNS
servers'—when the discovery configuration
discovers servers within Address Manager with the Other DNS
Server role, servers with this role are treated the same
way as BlueCat DNS/DHCP Servers and queries will also be
forwarded to servers with the Other DNS Server role.
- Introduces support for the Discovery Instance to use secrets stored in Azure
Key VaultDiscovery Instance v25.3 introduces support for Azure Key Vault for retrieving credentials of Azure tenants. When configuring a discovery configuration, you can now select the Azure Key Vault from the External vault list and enter the Client ID and Client secret key names stored in Azure Key Vault for authentication when discovering DNS data in Azure.Note: This option is only available when you select Use VM role for authentication as the authentication method for Azure discovery.
1.2.0
- Support for new AWS record types
Discovery instance has been updated to support new resource record types introduced by AWS. Discovery instance v1.2.0 now supports SSHFP, CAA, HTTPS, TLSA, SVCB, HINFO, and URI record types.
- Resolves an issue where previously, if the Discovery Instance is performing discovery in an Azure tenant with multiple subscriptions and one subscription has a State that is not Enabled or Past Due, the Discovery Instance would abandon discovery for all subscriptions in that tenant.
- Resolves an issue where previously, when the Discovery Instance performed discovery in large environments, the Discovery Instance would hit the memory limit and abandon discovery. This issue has now been resolved and the Discovery Instance scales resource allocations based on the resources of the host machine.
- Resolves an issue where previously, when the Discovery Instance created entries in a snapshot for each VPC that records were discovered in, the discovered zone count that appeared in the UI would contain multiple times more entries than what was discovered.
- Resolves an issue where previously, the Discovery Instance could not update the discovered domain list in BlueCat Edge due to special characters, resulting in additional issues where discovered namespaces took longer to receive the updated discovered zones.
1.1.0
- Discover DNS infrastructure in AWS, Azure, and GCP environments
Discovery instance has been updated to support DNS data discovery cloud environments. You can create Discovery Configurations to retrieve data from AWS, Azure, or GCP environments. You can apply the configurations to Discovery Instances to allow you to manage DNS records across multiple platforms effortlessly using a single namespace.
- Support for credential recovery from HashiCorp Vault
This release introduces support for retrieving credentials from HashiCorp Vault. If you store your Address Manager, AWS, Azure, or GCP credentials in HashiCorp Vault, you must first store HashiCorp Vault authentication credentials in Secrets Manager.
1.0.1
- Resolves an issue where the Discovery Instance would retrieve information from Address Manager and when it encountered a DNS server configured with the type "Other DNS Server", the Discovery Instance would not retrieve any information, as the service IP address fields are empty.
1.0.0
- Initial introduction of Discovery Instance services.