In the Advanced system settings, you can configure various settings, e.g., an SSL Certificate policy and web proxy, among others. There are several categories of advanced system settings, which you can refer to below for more information:
- SSL (Secure Sockets Layer)
- SOA record defaults in new zones
- Web proxy
- Cisco Meraki
- Miscellaneous settings
SSL
Certificates enable the use of HTTPS when communicating with external web services, such as Azure or Micetro Update Repository. Configure an SSL Certificate policy with the following settings:
- SSL Certificate policy
- Determines the SSL Certificate policy applied to the Cloud Integration feature and update checks. Select whether the SSL Certificate policy is Strict or Permissive.
- Path to SSL Certificate Authority file or directory
- Specify the path to the SSL Root certificate used by the SSL Certificate policy.
SOA record defaults in new zones
Use the following settings to configure SOA record defaults in new DNS zones:
- TTL of SOA record
- Specify the default TTL (Time-to-Live) value to use for the SOA record of new zones.
- Hostmaster
- Specifies the default value to use for the
Hostmasterfield in the SOA record of new zones. - Refresh
- Specify the default value to use for the
Refreshfield in the SOA record of new zones. - Retry
- Specify the default value to use for the
Retryfield in the SOA record of new zones. - Expire
- Specify the default value to use for the
Expiryfield in the SOA record of new zones. - Negative caching (BIND)
- Specify the default value to use for the
Negative Cachingfield in the SOA record of new zones. Only applicable for zones on BIND DNS servers. - Minimum TTL (MS)
- Specify the default TTL (Time-to-Live) value to use for the
TTLfield in the SOA record of new zones. Only applicable for zones on Microsoft DNS servers.
Web proxy
Use these settings to specify a web proxy to use and its details:
- Web proxy to use
- Specify a proxy server to be used for outgoing connections, for checking for updates, and for AWS cloud services.
- Web proxy port (defaults to port
80) - Specify the port of the proxy server to be used for outgoing connections, for checking for updates, and for AWS cloud services.
- Username for web proxy authentication
- Specify a username for proxy sign-in.
- Password for web proxy authentication
- Specify a cleartext password for proxy sign-in.
- Use web proxy settings when connecting to AWS
- If selected, the configured proxy settings will be used for connections to AWS.
Cisco Meraki
Use the following settings for Cisco Meraki clients:
- Network client synchronization interval in seconds
- Specify the amount of time, in seconds, it takes for the network to fetch all Meraki clients.
- Configuration synchronization interval in seconds
- Specify the amount of time, in seconds, between fetches of all non-client-related information, e.g., networks, subnets, etc.
- Throttling max wait time in seconds
- Specify the maximum wait time, in seconds, after a
429 Too many requestsresponse. Default behavior follows the maximum value suggested in the Meraki API response. - API server error default wait time in seconds
- Specifies the wait time, in seconds, after receiving
5xxerror responses.
Miscellaneous
The following settings can be configured for various functions:
- Folder for scripts that can be run from the API
- Specify the directory that contains scripts that may be run from the API.
- Log performance of API calls
- Select this option to enable the logging of API call execution time. Mainly used for diagnostic purposes.
- Time in minutes between write-outs of API call performance log
- If logging of API query performance is enabled, specify how frequently the log should be written to disk.
- Automatically adjust local zone transfer settings for BIND
- Enable this setting for BIND to automatically optimize the settings related to local (within your network) zone transfers.
- Automatically create reverse (PTR) records
- Enable this setting for Micetro to automatically create reverse (PTR) records. PTR records are used for reverse DNS lookups, which are used to resolve an IP address to a domain name.
- Perform backup of MS and ISC DHCP servers
- Select this checkbox to enable Micetro to perform a backup of Microsoft (MS) and Internet Systems Consortium (ISC) Dynamic Host Configuration Protocol (DHCP) servers.
- Default TTL to use for DNS records created in zones for all xDNS profiles
- Specify the default TTL (Time-to-Live) value to use for DNS records created in zones for all xDNS profiles.
- Disable all health checks
- Select the checkbox to disable all health checks.
- Disable collection of statistical information
- Select the checkbox to stop the collection of statistical information.
- Use Azure activity log to optimize DNS synchronization
- When enabled, the Azure activity log is monitored for events related to DNS changes, and those changes are synchronized with the DNS server in real-time.
- Use AWS CloudTrail events to optimize DNS synchronization
- Select the checkbox to enable AWS CloutTrail events to be used to optimize DNS synchronization.
- IP ranges/scopes inherit access by default
- When you create a new IP range or scope, it will inherit all access bits from its parent by default. If you want to change this behavior, clear this checkbox.
- Maximum number of blocks that can be temporarily claimed
- To limit the number of blocks that can be temporarily reserved or allocated for use by a specific user, enter the maximum number of blocks.
- Enable collection of IP information from routers
- Select the checkbox to enable the system to collect IP information from the ARP cache of routers.
- Timeout in seconds for named-checkconf
- Enter the timeout value, in seconds, for named-checkconf files.
- Synchronize DNSSEC signed zones immediately after editing
- Select the checkbox to enable the immediate synchronization of DNSSEC signed
zones when they are changed.Note: Enabling this feature can affect the performance of the system.
- Use case sensitive comparison when updating custom properties from scripts
- Select the checkbox to require taking case sensitivity into account when comparing custom properties from scripts.
- Include A/AAAA records when checking for "Edit apex records" access
- Select the checkbox to require the consideration of A and AAAA records when verifying access to edit apex (root) records.
- Web app landing page
- By default, the Micetro homepage is the landing page for the system. You can change the landing page, if desired, to either the DNS or IPAM page. If you change the landing page, you can select the Micetro logo in the top left corner of the screen to go to the Micetro homepage.
- Web app server host
- If the Web Application is running on a different server host than Micetro
Central, specify it in the provided field, so that Micetro can update it
automatically. The default is
localhost(the same server as Micetro Central). - Require User Administrator access to be able to list users, groups and roles
- Select the checkbox to require a user to have User Administrator access in order to retrieve information about users, groups, and roles in Micetro.