eggwhisk
asked on
AD Win 2000 DNS suffix search
Does Windows 2000 AD DC have a group policy setting for providing clients with the DNS suffice search order for a domain tree that has more than one child domain. The clients must be able to resolve names in other domains besides the local and parent ie abc.mydomain.com, def.mydomain.com, ghi.mydomain.com and mydomain.com
ASKER
Hi JamesDS
Thanks very much for the info. However I am new to AD and although I can find the Administrative Templates\Network there is no DNS client entry to configure. I guess I need to create it? If so can you advise how please? Also is it normally entered under user or machine config?
Thanks a lot
eggwhisk
Thanks very much for the info. However I am new to AD and although I can find the Administrative Templates\Network there is no DNS client entry to configure. I guess I need to create it? If so can you advise how please? Also is it normally entered under user or machine config?
Thanks a lot
eggwhisk
ASKER
JamesDS
OK I have read how to add the templete, but I am not sure which one to use, does it matter please? Also is it normally entered under user or machine config?
Thanks a lot
eggwhisk
OK I have read how to add the templete, but I am not sure which one to use, does it matter please? Also is it normally entered under user or machine config?
Thanks a lot
eggwhisk
eggwhisk
This is a machine policy, so it is entered under machine config
The template you want is SYSTEM.ADM
However, I have just rechecked my facts and this setting may not be available and may not work on Windows 2000. If it doesn't work then i'm afraid there is no way of doing this with a GPO on Windows 2000.
Cheers
JamesDS
This is a machine policy, so it is entered under machine config
The template you want is SYSTEM.ADM
However, I have just rechecked my facts and this setting may not be available and may not work on Windows 2000. If it doesn't work then i'm afraid there is no way of doing this with a GPO on Windows 2000.
Cheers
JamesDS
ASKER
Hi JamesDS
The setting is available in 2003 GPO, but the system.adm under 2K does not have this setting. However I have read that you can add it via a reg key as follows:
"save it as tcpip.adm either into your %systemroot%\inf folder or wherever you want to save it, then add it to your administrative templates in the Group Policy MMC. Make sure to uncheck "Show Group Policies only" in the "View" menu (when "Administrative Templates" is highlighted), as this is not a "Group Policy" but a "Preferred Setting"; it will not revert back to the original setting if you remove the "policy". Don't set this policy to "disabled". Test it before you apply it in earnest."
Trouble is it doe snot make sense top me. Can you deduce "what" should be saved as in the .reg key. I would like to understand how to do this.
Thanks a lot in advance
eggwhisk
The setting is available in 2003 GPO, but the system.adm under 2K does not have this setting. However I have read that you can add it via a reg key as follows:
"save it as tcpip.adm either into your %systemroot%\inf folder or wherever you want to save it, then add it to your administrative templates in the Group Policy MMC. Make sure to uncheck "Show Group Policies only" in the "View" menu (when "Administrative Templates" is highlighted), as this is not a "Group Policy" but a "Preferred Setting"; it will not revert back to the original setting if you remove the "policy". Don't set this policy to "disabled". Test it before you apply it in earnest."
Trouble is it doe snot make sense top me. Can you deduce "what" should be saved as in the .reg key. I would like to understand how to do this.
Thanks a lot in advance
eggwhisk
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Yup, Set the following machine policy:
Administrative Templates\Network\DNS Client - DNS Suffix Search List
The entries are seperated by commas thus: abc.mydomain.com,def.mydom
Cheers
JamesDS