Hello All!
We are in the process of deploying our HA servers and came to the point where SolarWinds is asking for credentials to a single(!) DNS server to manage the virtual hostname records. The issue is, we're reluctant to grant any SolarWinds service accounts DNS admin rights to our entire DNS infrastructure (Windows) as we would much rather grant the service account rights to the specific virtual hostname records being updated by SolarWinds. If this isn't possible, can we somehow get passed this point in the deployment in favor of our own means of updating the virtual hostname records using an intelligent DNS solution such as the F5 GTM/DNS?
I understand that in the past it was common to grant access to everything so you don't have to worry about what it needs but since the big hack and with infosec getting tighter and tighter, we need to start granularly granting access rather than just giving full admin rights.
Has anyone else come up with a better way to manage the virtual hostname records without granting full admin rights to their DNS infrastructure?
Thanks!!