Solved

clarification on KB #300684 (Netlogon with Single-Label DNS issue)

Posted on 2004-04-12
4
825 Views
Last Modified: 2008-02-01
I used EventID.net for finding MS KB#300684 but I have a question on it's implementation.

Q1) the DCLocator Configuration section mentions "set" the AllowSingleLabelDnsDomain (dword) value to 0x1.  But I don't have such a dword entry.  Should that have read "add or set" like later in the document about the DNS Client Config? - basically, should I add such a value?

Q2) we have only 1 site, a 2000 SP4 DC and a newly promoted 2003 DC.  The domain's DNS name was setup as a single label name about 5 years ago when it was a dual NT system (before my time)  Do I even need to worry about the DCLocator value since we have no other forests? or should this dword value be set anyways in both DCs and in all 2000/XP clients?

Q3) the "DNS clients" section says that all DCs need to dynamically register DNS records in a single-label DNS zone.  I've set the UpdateTopLevelDomainZones (dword) in the 2000 SP4 DC as stated: HKLM\System\CCS\Services\DnsCache\Parameters.  But the spot that I'm supposed to use in 2003 for that dword value (HKLM\Software\Policies\Microsoft\Windows NT\[DNSClient]\<here>) is missing DNSClient - should I make a 'new Key' here? and place the DWord value in it?

After making the changes on the 2 DCs, should the errors subside from their system logs?  I've got about 80 XP clients that'll need the "UpdateTopLevelDomainZones (dword)" just want to know what to expect, progress-wise, before I figure out a script to update the other registries en-masse.


BTW, all roles moved to the 2k3 box.  nslookup reports the proper DNS server (x.x.x.6, the 2k3 box) and sysvol replicates, DNS generally seems to be running smoothly, except for this warning in evenet log (id: 5781)
0
Comment
Question by:hakalugi
  • 2
  • 2
4 Comments
 
LVL 51

Accepted Solution

by:
Netman66 earned 125 total points
ID: 10807655
Q1 - create the key.
Q2 - single label names are not recommended - they cause sporadic resolution.
Q3 - create the key.

DHCP should be able to do Dynamic updating for you instead of adjusting the clients.

Good to see you doing some homework on this - it's a situation that occurs too often and can cause significant stress trying to figure out.

0
 
LVL 2

Author Comment

by:hakalugi
ID: 10808080
DHCP doing the updating... that's what I'm hoping after I can restart the servers :-)

About Q2: is there a way to safely augment my domain's dns name from 'domain' to 'domain.local'  that wouldn't upset my otherwise happy AD?  [it's internal only, ie: I don't register this with an ISP, etc.]

thanks.
0
 
LVL 51

Expert Comment

by:Netman66
ID: 10808459
You can....BUT....it will require upgraing all DCs to W2K3 and putting the Forest and Domain functional levels at Windows Server 2003 level.  Then you can do a safe rename.

Otherwise, no - leave it as is - if it's working be happy.

0
 
LVL 2

Author Comment

by:hakalugi
ID: 10859762
thanks.

doing the steps in Q1/Q3 did the trick.
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The HP utility "HP Lights-Out Online Configuration Utility for Windows Server 2003/2008" could be of great use when it comes to remotely configure a HP servers ILO WITHOUT rebooting the server. We would only need to create and run scripts using thi…
I guess it is not common knowledge to most Wintel engineers/administrators: If you have an SNMP-based monitoring system in your environment (and it's common to have SNMP or Syslog) it's reasonably easy to enable monitoring of the Windows Event logs,…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question