Configuring Server Credentials - Adaptive Applications - BlueCat Gateway - 24.1

Hybrid DNS Update Administration Guide
ft:locale
en-US
Product name
BlueCat Gateway
Version
24.1
The Server Credentials workflow is used to configure a Server object with credentials for an external DNS service.
  1. Under Configuration, select the configuration in Address Manager where the Server object is found.
  2. Under DNS Primary, select the Server object to be configured.
  3. Under Server Type, select the type of server to configure. Depending on the server type, configure the following additional information:
    Server Type Configuration
    BlueCat DNS If required, select a TSIG Key to use when sending dynamic updates.

    The BlueCat DNS server must be configured to accept dynamic updates from Hybrid DNS Update either from IP address ACL or with TSIG authentication.
    Windows DNS Select one of the following options:
    • Use Credentials—enter the Username and Password to connect to the selected server for running remote Powershell commands.

      If required, use the Powershell Configuration option to select a specific PSSessionConfiguration.

    • Use Secret Manager Service—enter the Secret Name in the AWS Secret Manager Service.
    • Use Azure Key Vault—enter the name of Azure key vault, such as MySecrets, or the full URL of the key vault, such as https://MySecrets.vault.azure.net in the Azure Key Vault.
    • Use Hashicorp Vault—enter the Secret Path in the Hashicorp Vault.
    AWS Route 53 Select one of the following options:
    • Use Credentials—enter the Access Key ID and associated Secret Access Key to access Amazon Route 53 APIs.

      If you are creating private zones using these credentials, specify the VPC where zones created should be visible.

    • Use EC2 Instance Credentials—select this option if you are deploying Hybrid DNS Update on AWS EC2 Instance Service.
    • Use Secret Manager Service—enter the Secret Name in the AWS Secret Manager Service.
    • Use Azure Key Vault—enter the name of Azure key vault, such as MySecrets, or the full URL of the key vault, such as https://MySecrets.vault.azure.net in the Azure Key Vault.
    • Use Hashicorp Vault—enter the Secret Path in the Hashicorp Vault.
    Azure DNS Select one of the following options:
    • Use Credentials—select the Azure Resource Group to be managed and provide a Credential JSON file generated by Azure tools.
    • Use Azure VM Instance—select this option if you are deploying Hybrid DNS Update on an Azure VM.
    • Use Secret Manager Service—enter the Secret Name in the AWS Secret Manager Service.
    • Use Azure Key Vault—enter the name of Azure key vault, such as MySecrets, or the full URL of the key vault, such as https://MySecrets.vault.azure.net in the Azure Key Vault.
    • Use Hashicorp Vault—enter the Secret Path in the Hashicorp Vault.
    GCP Server Select one of the following options:
    • Use Credentials—select the Project ID to be managed and provide a Credential JSON file generated by GCP tools.
    • Use Secret Manager Service—enter the Secret Name in the AWS Secret Manager Service.
    • Use Azure Key Vault—enter the name of Azure key vault, such as MySecrets, or the full URL of the key vault, such as https://MySecrets.vault.azure.net in the Azure Key Vault.
    • Use Hashicorp Vault—enter the Secret Path in the Hashicorp Vault.
  4. Click Add.