Performing client group operations

This page explains how to manage DNS Zone settings, the permissions and limits for a group of clients.

Overview

In the Clients page, select the corresponding of the clients and click the Group Operations icon. In the Clients Group Operations page that opens, you will be able to perform specific operations which will apply to all selected clients.

Auditing

Use the available radio buttons to enable/disable client actions auditing.

Managing DNS Zone settings 

Here are the DNS Zone settings you can manage for a selected group of clients:

• Refresh time: Signed 32 bit time value in seconds. This is the period of time that the secondary name server should wait before checking with the primary server to see whether the data has been modified. Default value: 10800 seconds.

• Retry time: 32 bit value in seconds. When a secondary name server requests for a Zone refresh from the primary server and this fails to respond, the secondary name server waits for the refresh time before attempting another Zone refresh after the failed attempt. Default value: 3600 seconds.
• Expire time: Signed 32 bit value in seconds. This setting indicates when the Zone is no longer authoritative and new interrogation of the root servers is required. It applies to Slaves only. Default value: 604800 seconds.

• Minimum TTL: This value is used as the default TTL for new Records created within the Zone. It is also used by other DNS servers to cache negative responses (for example when a Record does not exist). Default value: 86400 seconds.
• Default TTL: Signed 32 bit value in seconds. This is the amount of time that Zone Records are kept in a remote host cache. It is recommended that this value be set large. A small value will force remote servers to query the DNS server again for unchanged data. Default value: 604800 seconds.

Permissions for a client group

In order to manage permissions for the selected clients, you need to select their corresponding checkboxes and click Update. You can choose not change the existing settings and you can enable and disable the permissions available.

• Remove zones no longer present in update source: When enabled, this option will delete the DNS Zones that have been updated via a remote update location if the file that was retrieved from the remote location no longer contains the definition for the respective zones. This setting helps you keep the DNS Manager server perfectly synchronized with the remote update locations. You can enable/disable this option, or you can allow the client to manage this option, by selecting the Client setting radio box.
• Lock zones to an update source: When enabled, a zone will be associated with a single update remote location (the first update location where the zone description is retrieved from). Any other update location that contains a duplicate description will be ignored. You can enable/disable this option, or you can allow the client to manage this option, by selecting the Client setting radio box.
• Allow to add/remove remote update locations: When enabled, the client will be able to add new remote update locations.
• Allow to modify remote update locations: When enabled, the client will be able to edit current remote update locations.
• Allow to add/remove DNS templates: When enabled, the client will be able to add new DNS templates to the system and delete personal templates.
• Allow round robin management: When enabled, the DNS Round Robin button will show in the client's Tools area when the client edits a forward DNS zone. It doesn't matter if the user logged in with administrator or client credentials.

• Forward DNS Zones management: This area contains management permissions for forward DNS zones. 

  Click here to read about these permissions.

  Permission	What it does
  Do not change	When enabled, the settings for Forward DNS Zones Management will not be changed.
  Manage forward DNS zones and records	When enabled, the client will be able to add and remove forward DNS zones AND records.
  Manage forward DNS records only	When enabled, the client will be able to add and remove ONLY forward DNS records.
  View forward DNS zones and records	When enabled, the client will only be able to VIEW forward DNS zones and records.

•  Reverse DNS Zones management: This area contains management permissions for reverse DNS zones:

  Click here to read about these permissions.

  Permission	What it does
  Do not change	When enabled, the settings for Reverse DNS Zones Management will not be changed.
  Manage reverse DNS zones and records	When enabled, the client will be able to add and remove reverse DNS zones AND records.
  Manage reverse DNS records only	When enabled, the client will be able to add and remove ONLY reverse DNS records.
  View reverse DNS zones and records	When enabled, the client will only be able to VIEW reverse DNS zones and records.
  Forbid access to reverse DNS zones	When enabled, the client will not be able to manage reverse DNS zones.

• E.164 DNS Zones management: This area contains management permissions for E.164 DNS zones:

  Click here to read about these permissions.

  Permission		What it does
  Do not change		When enabled, the settings for E.164 DNS Zones Management will not be changed.
  Manage E.164 DNS zones and records		When enabled, the client will able to create and remove E.164 zones and DNS records.
  Manage E.164 DNS records only		When enabled, the client will be able to add and remove only DNS records.
  View E.164 DNS zones and records		When enabled, the client will only be able to VIEW the E.164 zones and DNS records.
  Forbid access to E.164 DNS zones		When enabled, the client will not be able to manage E.164 DNS zones.

Limits for a client group

To manage the limits of a selected group of clients, edit the fields explained below, then click Update. 

• Maximum number of DNS Zones: This is the maximum number of DNS Zones that the client can add to the system.
• Maximum number of remote update locations:This is the maximum number of remote update locations the client is allowed to add to the system.