As I understand it, if two DHCP servers, Server1 and Server2, are actively updating DNS records and and Sever1 goes down, DNS records can end up "stale" because Server2 does not have adequate permissions to update the records. The following Technet article suggests a solution:
http://technet2.microsoft.com/windowsserver/en/library/d0e19b57-c368-46c2-b017-caf25ae150ec1033.mspx?mfr=true"To solve this problem, the built-in security group called DnsUpdateProxy is provided. If all DHCP servers are added as members of the DnsUpdateProxy group, then the records of one server can be updated by another server if the first server fails."
Here's my question. If I were setting up DnsUpdateProxy, I would create a domain user account, DnsUpdateUser, make DnsUpdateUser a member of the DnsUpdateProxy group, and then configure the DHCP Server Service from Server1 and Server2 to logon using the DnsUpdateUser account. The Technet article, however, tells me to make "all DHCP servers are added as members of the DnsUpdateProxy." According to the article I actually make the Server1 and Server2 members of the group. Is the article correct?
Start Free Trial
