Infoblox BloxOne DDI

Infoblox BloxOne DDI is a cloud-managed DDI (DNS, DHCP, and IPAM) solution optimized for large-scale retail, remote, and branch office deployments.

Creating Read-Only Role with API Access in Infoblox #

To create a read-only user account for the Lucidum connector, you must:

  • create a custom role with the read-only permissions that the Lucidum connector needs

  • create a group with API access

  • create a service user for the Lucidum connector and assign the user to the group with API access

  • Create an access policy that assigns the role and group to the new service user

  • generate an API key for the new user. You can use the API key as a password when configuring the Lucidum connector.

To create a custom role:

  1. Log in to the Infoblox panel as an administrator.

  2. See https://docs.infoblox.com/space/BloxOneCloud/35366719/Creating+Roles

  3. Assign the following permissions to the role

    • All New Viewers = Read-Only

    • All IPv2 Networks = Read-Only

    • All IPv6 Networks = Read-Only

    • All Hosts = Read-Only

    • All IPv4 Host Addresses = Read-Only

    • All IPv6 Host Addresses = Read-Only

To create a user group with API access:

  1. Log in to the Infoblox panel as an administrator.

  2. See https://docs.infoblox.com/space/BloxOneCloud/35464313/Creating+User+Groups

  3. In the Allowed Interfaces field, click API

To create a service user:

  1. Log in to the Infoblox panel as an administrator.

  2. See https://docs.infoblox.com/space/BloxOneCloud/35431374/Creating+Users

  3. Select Type of Service.

  4. Assign the user to the new group.

To create an access policy that combines the user, role, and group:

  1. Log in to the Infoblox panel as an administrator.

  2. See https://docs.infoblox.com/space/BloxOneCloud/35431431/Creating+Access+Policies

  3. Select the role you created above.

  4. Select the group you created above.

To generate an API key:

  1. Log in to the Infoblox panel as an administrator.

  2. See https://docs.infoblox.com/space/BloxOneCloud/35464104/Creating+Service+API+Keys

Configuring the Connector for InfoBlox #

To configure Lucidum to ingest data from InfoBlox:

  1. Log in to Lucidum.

  2. In the left pane, click Connector.

  3. In the Connector page, click Add Connector.

  4. Scroll until you find the Connector you want to configure. Click Connect. The Settings page appears.

  5. In the Settings page, enter the following:

    • Host Name or IP Address (required). The hostname or IP address of the Infoblox DDI server

    • Username (required). The user name for an Infoxblow user account that has API access and the read permissions specified in the previous section.

    • Password (required). The API key for an Infoxblow user account that has API access and the read permissions specified in the previous section.

    • API Version. Specify the API version.

  6. To test the configuration, click Test.

    • If the connector is configured correctly, Lucidum displays a list of services that are accessible with the connector.

    • If the connector is not configured correctly, Lucidum displays an error message.

API Documentation #

https://docs.infoblox.com/space/BloxOneDDI/186745633/BloxOne+DDI+API+Guide

https://www.infoblox.com/developer-portal/developer-portal-api-documentation/