Microsoft IPAM - Account Setup

Overview

In many organisations there may be a requirement to provide a minimal set of permissions.  This article provides the permission set required for the MS IPAM to function.


Considerations

  • Have licensed MS IPAM
  • Configured a service account in your Active Directory

Procedure

Microsoft Windows Server hosting your IPAM Services

  1. The account you wish to use must be a member of the following builtin Windows group. This role will allow remote connectivity for your service account.
    1. Remote Management Users

Microsoft IPAM roles

  1. Your service account must be added to the following Roles in MS IPAM
    1. IP Address Record Administrator Role
    2. DNS Record Administrator Role



  2. Alternatively you can create a Role that embodies both of the above roles




Additional information

SovLabs MS IPAM Setup : http://docs.sovlabs.com/latest/vRA/7.6/modules/ipam/microsoft-ipam/
Microsoft IPAM Documentation : https://docs.microsoft.com/en-us/windows-server/networking/technologies/ipam/ipam-top
Microsoft IPAM Permission sets : https://docs.microsoft.com/en-us/windows-server/networking/technologies/ipam/view-roles-and-role-permissions

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.