Manual Chapter : Viewing GSLB Objects

Applies To:

Show Versions Show Versions

BIG-IQ Centralized Management

  • 5.4.0
Manual Chapter

View GSLB objects

Before you can view GSLB objects, you must discover and import BIG-IP® devices that are members of a DNS sync group that has GSLB objects.
When you use F5® BIG-IQ® Centralized Management to manage your DNS sync group, you can view the GSLB objects that are defined on devices in the sync group.
  1. At the top of the screen, click Configuration.
  2. On the left, click DNS > GSLB , and then select the object type that you want to view.
    The screen lists the objects that are defined on devices managed by this BIG-IQ system that match the object type you selected.. For each object (except topology records or topology regions) , icons indicate the health status and availability.
  3. To view overview information about a particular object, select the check box for that object.
    The screen displays an overview area and a Related Items area for this object.
  4. To see a list of related items for a GSLB object:
    1. Select the check box for that object.
    2. In the Related Items area, click Show.
      You can view the list of related items; and, for many of the items, you can click a link to view properties for that item.
  5. To view the general properties for a GSLB object, click the name of that object.
    The properties screen for the selected object opens.

How do I manage permissions for DNS GSLB objects?

BIG-IQ® Centralized Management makes it straightforward for you to manage permissions that allow users to view global server load balancing (GSLB) objects only for the specific DNS GSLB objects you assign to them.

To provide permissions for a specific set of objects, you perform several tasks:

  1. Add a custom resource group - In this task, you specify the GSLB objects that you want this user to work with. You create a resource group for each collection of objects that you want to assign to a user.
  2. Add a custom role - Next, you associate the GSLB Viewer role type withthe resource groups that contain the objects you want your delegates to view. For example, if you had a resource group made up of two wide IPs, one named SeattlePrime and the other named SeattleSecond you might name this role viewSeattle.
  3. Add a custom user - Finally, you create a user and assign a custom role to that user. The role gives that user permissions to view the objects that belong to the objects in the resource group. In the previous example, you could assign your custom user to the viewSeattle role to give that user the ability to view the GSLB objects in the two Seattle wide IPs.

For step by step guidance on each of these tasks, refer to the Custom roles based on job responsibilities? chapter in the F5 BIG-IQ Centralized Management:Authentication, Roles, and User Management guide on support.f5.com.