Configuring a User

You can use the admin user or create a separate user for the Infoblox integration. If you have a Cloud Network Automation license, a cloud-api-only group is created automatically. You can create a user in this group. Otherwise, you must create a group specifically for this integration.

In any scenario, the user or group must have the following minimum set of permissions for full DDI functionality to work with Infoblox IPAM Driver for OpenStack Neutron:

Permission Type	Resource	Resource Type	Permission
[DNS]	All A records	A record	RW
[DNS]	All AAAA records	AAAA record	RW
[DNS, DHCP, IPAM]	All hosts	Host	RW
[DNS, DHCP, IPAM]	All IPv4 host addresses	IPv4 host address	RW
[DNS, DHCP, IPAM]	All IPv6 host addresses	IPv6 host address	RW
[DHCP, IPAM]	All IPv6 networks	IPv6 network	RW
[GRID]	All members	Member	RW
[DHCP, IPAM]	All IPv4 networks	IPv4 network	RW
[DHCP, IPAM]	All network views	Network view	RW
[DNS]	All PTR records	PTR record	RW
[DHCP]	All IPv4 ranges	IPv4 range	RW
[CLOUD]	All tenants	Tenant	RW
[DNS]	All DNS views	DNS view	RW
[DNS]	All zones	Zone	RW

If you are testing the IPAM only case, which does not require Infoblox to serve DHCP and DNS, the minimum set of required permissions are as follows:

Permission Type	Resource	Resource Type	Permission	Comment
[GRID]	All members	Member	RW	This can be set RO if Report Grid Sync Time is set to False.
[CLOUD]	All tenants	Tenant	RW
[DHCP, IPAM]	All network views	Network view	RW
[DHCP, IPAM]	All IPv4 networks	IPv4 network	RW
[DHCP, IPAM]	All IPv6 networks	IPv6 network	RW

IPAM Driver for OpenStack Neutron

Configuring a User

Analytics

Related content