Skip to main content
Skip table of contents

2524 - Creating authoritative subzones in NIOS


The sales department within your organization needs to manage its own namespace, As the administrator, you want to allow operators to manage entries in this space for you. Please set up the necessary configurations on the NIOS Grid.

Estimate Completion Time

  • 15 to 20 minutes






Grid Manager UI




  • Administrative DNS access to the Grid

Course References

  • 2006: Configuring NIOS Administrator Accounts and Permissions

  • 2009: Configuring NIOS DNS Services

  • 2023: Configuring NIOS DNS Zones

Lab Initiation

Access jump-desktop

Once the lab is deployed, you can access the virtual machines required to complete this lab activity. To initiate the lab, click on the jump-desktop tile and login to the Linux UI:

Username: training

Password: infoblox

Initiate lab

To initiate the lab, double-click the Launch Lab icon on the Desktop.

Launch Lab

Launch Lab

Choose the lab number from the list and click OK.

After clicking OK, you will see a pop-up message with a brief description of the lab task. If the description looks correct, click Yes to continue lab initiation.

Lab initiation will take a couple of minutes to finish.

Once complete, you will see another pop-up message with the login credentials and the URL for the Grid Manager’s User Interface. Note that the credentials may differ from those from prior labs.

Screenshot 2024-05-06 at 3.16.57 PM.png


  1. Creating an authoritative subzone.

  2. Configuring the subzone permissions to be read-write by a specific group.

Task 1: Creating an authoritative subzone

Create the authoritative subzone The sales department is not using its own DNS server(s). Please re-use the same name servers as the parent zone,

Task 2: Configuring subzone permissions

Allow the group operators to have read-write access to the subzone



Task 1 Solution: Creating an authoritative subzone

  1. Navigate to Data Management → DNS → Zones

  2. Click the Add dropdown menu and select Authoritative Zone

  3. Leave the radio button set to Add an authoritative forward-mapping zone

  4. Click Next

  5. For Name, enter

  6. Leave the remaining settings unchanged and click Next

  7. Select the radio button for Use this set of name servers

  8. Click the Add dropdown menu and select Grid Primary

  9. In the Add Grid Primary section, click Select to display the Member Selector

  10. In the Member Selector window click the entry for

  11. The selected device appears in the Add Grid Primary section

  12. Click the Add button to add as primary server

  13. Add a Grid Secondary device by clicking Add (plus) → Grid Secondary

  14. In the section for Add Grid Secondary, click Select to open the Member Selector window

  15. Click on

  16. The device appears as the selected Grid Secondary

  17. Click the Add button to add as a Grid Secondary server

  18. The table shows ibns1 as Grid Primary and ibns2 as Grid Secondary

  19. Click Save & Close

The subzones tab under now contains a new entry for the authoritative zone

Task 2 Solution: Configuring subzone permissions

The easiest way to edit the subzone's permissions is to edit the zone settings:

  1. Inside, go to Subzones and edit

  2. Navigate to the Permissions tab

  3. Click + and select the operators group

  4. Once the operators group name populates, edit the Permissions field using the drop-down box, set the permissions to ‘Read/Write’.

  5. Click Save and Close

  6. Now, users in the operators group will be allowed read-write access to manipulate the subzone configurations and records.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.