You can now programmatically configure and manage your Advanced DNS Security Resolver deployments through Strata Cloud Manager to automate DNS security policy management and maintain consistent security postures across your organization. The Advanced DNS Security Resolver Configuration APIs provide the same configuration capabilities available through the Strata Cloud Manager user interface, now accessible as customer-facing APIs that integrate with your existing DevOps workflows.

Use these APIs to manage DNS security profiles with threat protection categories and logging settings, define connection sources and subnets that connect to your DNS resolver, manage custom fully qualified domain names (FQDNs) for specialized DNS handling, configure External Dynamic Lists (EDLs) for dynamic threat intelligence integration including CA certificate management, specify internal domains that bypass external DNS resolution, identify and manage domains with known DNS misconfigurations, configure sinkhole settings to redirect malicious DNS queries, and retrieve resolver status and configuration details.

These APIs use the common Strata Cloud Manager authentication mechanism for service access and authorization. To get started, set up a service account with appropriate permissions in Strata Cloud Manager and obtain an access token using your client credentials. For best practices on using these APIs effectively, refer to the Strata Cloud Manager API Best Practices guide.