We help IT Professionals succeed at work.

clarification on KB #300684 (Netlogon with Single-Label DNS issue)

hakalugi
hakalugi asked
on
Medium Priority
911 Views
Last Modified: 2008-02-01
I used EventID.net for finding MS KB#300684 but I have a question on it's implementation.

Q1) the DCLocator Configuration section mentions "set" the AllowSingleLabelDnsDomain (dword) value to 0x1.  But I don't have such a dword entry.  Should that have read "add or set" like later in the document about the DNS Client Config? - basically, should I add such a value?

Q2) we have only 1 site, a 2000 SP4 DC and a newly promoted 2003 DC.  The domain's DNS name was setup as a single label name about 5 years ago when it was a dual NT system (before my time)  Do I even need to worry about the DCLocator value since we have no other forests? or should this dword value be set anyways in both DCs and in all 2000/XP clients?

Q3) the "DNS clients" section says that all DCs need to dynamically register DNS records in a single-label DNS zone.  I've set the UpdateTopLevelDomainZones (dword) in the 2000 SP4 DC as stated: HKLM\System\CCS\Services\DnsCache\Parameters.  But the spot that I'm supposed to use in 2003 for that dword value (HKLM\Software\Policies\Microsoft\Windows NT\[DNSClient]\<here>) is missing DNSClient - should I make a 'new Key' here? and place the DWord value in it?

After making the changes on the 2 DCs, should the errors subside from their system logs?  I've got about 80 XP clients that'll need the "UpdateTopLevelDomainZones (dword)" just want to know what to expect, progress-wise, before I figure out a script to update the other registries en-masse.


BTW, all roles moved to the 2k3 box.  nslookup reports the proper DNS server (x.x.x.6, the 2k3 box) and sysvol replicates, DNS generally seems to be running smoothly, except for this warning in evenet log (id: 5781)
Comment
Watch Question

CERTIFIED EXPERT
Top Expert 2005
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION

Author

Commented:
DHCP doing the updating... that's what I'm hoping after I can restart the servers :-)

About Q2: is there a way to safely augment my domain's dns name from 'domain' to 'domain.local'  that wouldn't upset my otherwise happy AD?  [it's internal only, ie: I don't register this with an ISP, etc.]

thanks.
CERTIFIED EXPERT
Top Expert 2005

Commented:
You can....BUT....it will require upgraing all DCs to W2K3 and putting the Forest and Domain functional levels at Windows Server 2003 level.  Then you can do a safe rename.

Otherwise, no - leave it as is - if it's working be happy.

Author

Commented:
thanks.

doing the steps in Q1/Q3 did the trick.
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.