Microsoft Active Directory Integration

Universal DDI provides the capability for importing Microsoft Active Directory (AD) DNS and IPAM/DHCP objects into the Infoblox Portal by copying them into a dedicated IP Space / DNS view, so you can view and monitor all objects from a single consolidated read-only location. The connectivity requirements are available at Active Directory Connectivity Requirements.

Universal DDI also provides the capability for one-way synchronization from Microsoft Active Directory to Infoblox Portal. For more information, see Active Directory-Integrated DNS Zones.

Integration with Active Directory enables you to do the following:

• Synchronize public zones, private zones, and records from AD to Universal DDI. All records supported by Universal DDI and Active Directory can be imported into Universal DDI.

• Synchronize Active Directory IPAM data (scope, range, and fixed address) to an IP space in Infoblox Portal.

• Synchronize DHCP options defined in Active Directory to Infoblox Portal. The synchronized DHCP options are read-only. The DHCP options from Active Directory will be reconciled and stored in a custom option space. The DHCP option items specified for each subnet will be mapped with each IPAM object and will be available under the respective object on the IPAM page.

The following diagram illustrates how to leverage the Active Directory integration feature. To integrate AD with Universal DDI, complete the following steps:

1. Go to Admin > Credentials, and configure Microsoft Active Directory Credentials. For more information, see Creating Active Directory Credentials.

2. Go to DNS > Third Party DNS Providers, and configure AD as a third-party DNS provider. For more information, see Configuring Third Party DNS Providers.

3. Go to IPAM/DHCP > Third Party IPAM Providers, and configure AD as a third-party IPAM provider. For more information, see Configuring Third Party IPAM Providers.

Open

You can perform the following actions: