How can I configure multiple DNS Suffixes for a PAM appliance ?

Document ID : KB000115850
Last Modified Date : 26/09/2018
Show Technical Document Details
Introduction:
Sometimes it is necessary for PAM to be able to recognize devices pertaining to multiple domains considering a given search order for the different domain suffixes. For instance let's imagine a new target host exists both in domain testa.com  and in another domain (the correct one) and it is configured in PAM without specifying the entire FQDN. In this case PAM resolves the wrong hostname always trying to add the testa.com suffix. 

Example: 

PAM Configured Device: machineA  PAM Resolution: machineA.testa.com - 10.20.30.40 
Corrected Resolution: machineA.testb.com – 10.20.30.40 

 
Question:
Is it possible to add multiple domains to PAM so that when connecting to a device if searches the different domains in order ? That is, it tries first testA.com, then testB.com, etc and it returns with the right domain ?
Environment:
CA PAM all versions
Answer:
This is a standard Linux setting: in the resolv.conf fine of the PAM appliance, they keyword search specifies the actual order in which one must resolves the domains. 

For instance, if we specify

search testA.com testB.com

when a search is made for the FQDN of machineA, first it will try machineA.testA.com, then machineA.testB.com

The domains specified after the search keyword in resolv.com map the contents of the Domain name box in the Configuration --> Network --> Network settings section under the PAM gui. Therefore it is just a matter of specifying

testA.com testB.com

In the said menu, and that will create the required search entry in resolv.conf of PAM, thus enabling the required functionality