Link to home
Start Free TrialLog in
Avatar of eggwhisk
eggwhisk

asked on

AD Win 2000 DNS suffix search

Does Windows 2000 AD DC have a group policy setting for providing clients with the DNS suffice search order for a domain tree that has more than one child domain.  The clients must be able to resolve names in other domains besides the local and parent ie abc.mydomain.com, def.mydomain.com, ghi.mydomain.com and mydomain.com
Avatar of JamesDS
JamesDS

eggwhisk
Yup, Set the following machine policy:
Administrative Templates\Network\DNS Client - DNS Suffix Search List

The entries are seperated by commas thus: abc.mydomain.com,def.mydomain.com,ghi.mydomain.com

Cheers

JamesDS
Avatar of eggwhisk

ASKER

Hi JamesDS
Thanks very much for the info.  However I am new to AD and although I can find the Administrative Templates\Network there is no DNS client entry to configure.  I guess I need to create it?  If so can you advise how please?  Also is it normally entered under user or machine config?
Thanks a lot
eggwhisk
JamesDS

OK I have read how to add the templete, but I am not sure which one to use, does it matter please?  Also is it normally entered under user or machine config?
Thanks a lot
eggwhisk
eggwhisk

This is a machine policy, so it is entered under machine config
The template you want is SYSTEM.ADM

However, I have just rechecked my facts and this setting may not be available and may not work on Windows 2000. If it doesn't work then i'm afraid there is no way of doing this with a GPO on Windows 2000.

Cheers

JamesDS
Hi JamesDS

The setting is available in 2003 GPO, but the system.adm under 2K does not have this setting.  However I have read that you can add it via a reg key as follows:

"save it as tcpip.adm either into your %systemroot%\inf folder or wherever you want to save it, then add it to your administrative templates in the Group Policy MMC. Make sure to uncheck "Show Group Policies only" in the "View" menu (when "Administrative Templates" is highlighted), as this is not a "Group Policy" but a "Preferred Setting"; it will not revert back to the original setting if you remove the "policy". Don't set this policy to "disabled". Test it before you apply it in earnest."
Trouble is it doe snot make sense top me.  Can you deduce "what" should be saved as in the .reg key.  I would like to understand how to do this.
Thanks a lot in advance
eggwhisk
ASKER CERTIFIED SOLUTION
Avatar of JamesDS
JamesDS

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial