This feature is exclusively available to participants in the Early Access Program (EAP). For details about the EAP, visit the Infoblox Early Access Program page. Infoblox consistently updates our documentation as we introduce new features to the EAP.
BloxOne Infoblox Platform allows the creation of specific DDI (DNS, DHCP, IPAM) resources within compartmentsaccess views. Users who belong to a compartment an access view can create DDI objects only when the parent objects already exist in the respective compartmentaccess view.
For instance, if the root account admin or user already created a parent CIDR in a compartmentan access view, users who belong to the compartment access view can select a CIDR in the parent CIDR within the associated compartmentaccess view. When using the next available IP address or subnet, the system will select the next available IP address or subnet within the parent CIDR inside the associated compartmentaccess view. Similarly, only root account admin or user can create parent address blocks. Other users can create an address block only if the parent address block is already in the respective compartmentaccess view.
In addition, resources created or linked to a particular compartment access view are also accessible at the root compartment default access view level. Consequently, only corporate admins have access to all resources in all subcompartmentssubaccess views.
BloxOne Infoblox Platform supports the following DDI objects to be assigned to compartmentsaccess views:
IP spaces
Address blocks
DNS Views
DNS Zones
The following DDI objects inherit the assigned compartments access views from their parent objects. Users are not allowed to create these objects within a compartment. You can create the following objects, but cannot explicitly assign them to an Access View:
Address ranges
Subnets
Fixed addresses
Individual IP reservations/fixed addresses
| Note |
|---|
Assigning of DHCP objects to Access Views is not supported. However, you can edit the objects within an access view. The DHCP objects inherit the assigned access view from their parent objects. You can edit option filters, hardware filters, and clear leases if you have the appropriate DHCP role. For more information, see Setting up Access Control for Access Views. |
Only users with the applicable permissions can access and manage child DDI objects within the context of the designated compartmentaccess view. For information about user roles, groups, and access policies, see Managing Role-Based Access Control.
...
| panelIconId | atlassian-warning |
|---|---|
| panelIcon | :warning: |
| bgColor | #FFEBE6 |
...