...
Only static and dynamic record source type support secure dynamic updates. You can see the record source type in the Resource Record Viewer. The following table shows which type of secure dynamic updates is applicable to different record source types.
Table 21.1 Secure Dynamic Update Types
| Secure Dynamic Update Type | Record Source Type |
|---|---|
| Restrictions for updates to statics records | Static |
| Restrictions for updates to protected records | Static, dynamic |
| Restrictions based on GSS-TSIG principal authentication | Dynamic |
| Restrictions based on FQDN patterns | Static, dynamic |
Sometimes when the updating record has the same data as the existing record, you may need to initialize the record creation timestamp to avoid unwanted DNS record scavenging. For more information, see Forcing Creation Timestamp Initialization for Unchanged Records.
Failed attempts to dynamically update secured records are recorded in the NIOS syslog. You can view it, as described in Viewing the Syslog and Searching in the Syslog.
You can use Smart Folders to organize data by record source, principal, or protection state. For more information, see Chapter 3, Smart Folders.
In addition, you can use Global Search to search for records by principal name. For more information, see Using Global Search.
...
Note: To use the secure dynamic updates feature, you must have a DNS license installed in the Grid Manager.
...
This method prevents updates to all RRsets containing static records at once in the Grid, DNS view, or zone. To prevent updates to specific static records, see Restricting Updates to Protected Records.
...
Note: When you upgrade from a previous NIOS version to NIOS 7.3 or later, all dynamic updated records are labelled as static records if you enable the Secure Dynamic Updates feature. Infoblox suggests that you enable this feature only after all records are changed to Dynamic. NIOS tags the RRsets that are not auto-generated as static records.
...
- To delete an FQDN pattern, select the check box next to the pattern and click the Delete icon.
4. Click Save & Close.
NIOS 8.1NIOS Administrator Guide (Rev. A) 1003
Configuring DDNS Updates
1004NIOS Administrator Guide (Rev. A)NIOS 8.1
| Anchor | ||||
|---|---|---|---|---|
|
If the attributes of a resource record do not change in the result of a DDNS update, Grid Manager ignores the update and the record’s creation timestamp remains the same. This may cause valid records with outdated timestamp to be removed during DNS scavenging. To avoid this, you can set the record creation time to be modified even when the record data do not change at DDNS update. You can do this for the whole Grid, or for a specific DNS view or authoritative zone.
To force the creation timestamp initialization for unchanged resource records:
- Open the Grid DNS Properties, DNS View Properties, or Authoritative Zone Properties editor.
- For a DNS view or authoritative zone, click Override.
- Select Modify creation time even when resource record data is unchanged.
- Click Restart in the Grid Manager’s system messages banner for the setting to take effect.
For information about DNS scavenging, see DNS Record Scavenging.