This site requires JavaScript to be enabled
Welcome|
Recent searches
IE BUMPER

Infoblox: Groups and Permissions

Number of views : 18
Article Number : KB0015243
Published on : 2016-11-21
Last modified : 2019-01-26 00:55:39
Knowledge Base : IT Public Self Help

All permissions in the Infoblox system are assigned to groups and not to individual accounts. While we can not assign permissions to individual records, we can assign read/write permissions to:

  1. IPAM network object (subnet)
  2. Domain (ex. domain.utexas.edu)
  3. in-addr.arpa domain which is the DNS representation of a subnet (contains PTR records) 

 

One group may have permission to edit multiple objects.

Multiple groups may have the ability to edit the same objects.

 

CAVEATS

If you are a member of multiple groups that have been configured in Infoblox, this can cause uncertainty as to what permissions you'll have when you login.

 

For example:

You're a member of group A with permissions to objects:

adomain1
adomain2
adomain3

and a member of group B with permissions to objects:

bdomain1
bdomain2
bdomain3



Depending on the ONE GROUP THAT'S NOTED when you login, you will EITHER be able to edit objects adomain1-adomain3 OR bdomain1-bdomain3 but not both.

In order to be certain of the permissions you will be assigned, you can be a member of ONLY one group that's configured in Infoblox AND SUCCESSFULLY be assigned the permissions assigned to that one group. 

NOTE: This only affects groups that have been added to the Infoblox system. If you're a member of multiple groups in AD and these groups have not been added to Infoblox then permissions will be unaffected.

 

 

 

 

 

Thank You! Your feedback has been submitted.

Feedback