Skip to main content

DNS Records

This document describes how to add/remove/edit DNS for the Azure Active Directory Domain Services environment. All records are managed through automation in this Repo.

Rules should be adjusted by the project team on a self-service basis.

Prerequisites

Limitations

  • At the time of writing this document, this automation does NOT support anything other than A records.
  • Azure Active Directory Domain Services can only be deployed once within an Azure tenant. This means there is only a production environment.

Process

A PR for changes to the BAIS NSG rules should be raised by the person or team requesting the change. The Platform Operations will review the PR and provide approval, you will then be able to merge your PR for an automated deployment. See steps 1 to 7 for details on raising a PR.

Self-Service Steps

  1. Clone Azure Active Directory Domain Services Repo to your local machine. bash git clone https://github.com/hmcts/dtspo-aad-domain-services
  2. Create a new branch, typically with a JIRA ticket number. bash git checkout -b BRANCH-NAME

  3. Navigate to terraform/scripts/dns-records.csv where you will see a CSV file containing DNS records.

  4. Modify the CSV file to meet your requirements, following existing formatting. Note: removing records from the CSV will remove them from the DNS server.

  5. Push your new branch bash git push --set-upstream origin BRANCH-NAME

  6. Create Pull Request and review changes compared with master.

  7. Look out for typical formatting issues such as extra spaces or unusual characters.

  8. Ensure you are not adding anything other than an A record, see limitations section of this document.

  9. Raise a BAU ticket with the PlatOps team requesting PR approval and execution.

  10. Once approved by PlatOps, you can merge your PR, this will trigger an automated deployment which will write your changes.

  11. Ensure your build completes successfully by monitoring the Azure DevOps Pipeline

  12. Test your DNS changes meet your requirement.

This page was last reviewed on 26 January 2024. It needs to be reviewed again on 26 January 2025 by the page owner platops-build-notices .
This page was set to be reviewed before 26 January 2025 by the page owner platops-build-notices. This might mean the content is out of date.