Before creating a third-party DNS provider in the Cloud Services Portal, you must deploy a host and associate the MS AD Sync service with it.
For steps to create a host, see Deploying Hosts for BloxOne DDI.
For more information on adding the MS AD Sync service, see Creating Services. Associate the newly created host with the MS AD Sync service. For more information on deploying hosts, see Deploying Hosts.
If the Microsoft Active Directory objects are more than 5k, it is recommended to configure two hosts, one for DNS and one for IPAM. For information about creating hosts, see Creating Hosts.
To create a new third-party provider for Microsoft Active Directory, complete the following steps:
Go to Manage > DNS > Third-party DNS Providers.
Click Create > Microsoft Active Directory.
Configure the following options on the Create Third-party DNS Provider screen:
Name: Create a name.
Description: Create a description.
Credentials: Choose the credentials. Alternatively, click Create New Credentials to create new credentials and configure the following:
Name: Specify a name.
Description: Specify a description. Click Next.
Configure the following settings in the Microsoft Active Directory Credentials screen:
Domain\User Name: Specify the domain name and the user name for the Active Directory server.
Password: Specify the password for the Active Directory server.
Click Next.
Review the configuration settings and click Save.
Active Directory Server: Specify the IP address or FQDN. If you are using FQDN as the value, make sure it can be resolved by the BloxOne host.
Service Instance: Choose the MS AD Sync service instance you want to associate with the third-party DNS provider.
Sync Interval (min): Specify the sync interval, in minutes. The default value is 180 minutes. If you have a large amount of data, it is recommended you set the sync interval between 180 minutes to 1440 minutes.
Click Next.
Review the configuration, and click Save & Close.
The following sync interval settings are recommended:
180 minutes if the Microsoft Active Directory data to sync is ~< 25K
360 minutes if the Microsoft Active Directory to sync is between 25k-50k
1440 minutes if the Microsoft Active Directory data to sync is more than 50K+
The new destination DNS View is automatically created. When a Third Party DNS Provider is deleted, the view and all objects associated with the view are unassigned. You must delete the view manually.
Once the third party DNS provider is created, the sync status will be in a Pending state. By default, the sync interval is 180 minutes. Once the sync starts, the status will change to Sync in Progress. The status will change to Synced once the sync is complete. If there is an error during sync, an error message states the reason for the sync error.