• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 382
  • Last Modified:

AD Win 2000 DNS suffix search

Does Windows 2000 AD DC have a group policy setting for providing clients with the DNS suffice search order for a domain tree that has more than one child domain.  The clients must be able to resolve names in other domains besides the local and parent ie abc.mydomain.com, def.mydomain.com, ghi.mydomain.com and mydomain.com
0
eggwhisk
Asked:
eggwhisk
  • 3
  • 3
1 Solution
 
JamesDSCommented:
eggwhisk
Yup, Set the following machine policy:
Administrative Templates\Network\DNS Client - DNS Suffix Search List

The entries are seperated by commas thus: abc.mydomain.com,def.mydomain.com,ghi.mydomain.com

Cheers

JamesDS
0
 
eggwhiskAuthor Commented:
Hi JamesDS
Thanks very much for the info.  However I am new to AD and although I can find the Administrative Templates\Network there is no DNS client entry to configure.  I guess I need to create it?  If so can you advise how please?  Also is it normally entered under user or machine config?
Thanks a lot
eggwhisk
0
 
eggwhiskAuthor Commented:
JamesDS

OK I have read how to add the templete, but I am not sure which one to use, does it matter please?  Also is it normally entered under user or machine config?
Thanks a lot
eggwhisk
0
How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

 
JamesDSCommented:
eggwhisk

This is a machine policy, so it is entered under machine config
The template you want is SYSTEM.ADM

However, I have just rechecked my facts and this setting may not be available and may not work on Windows 2000. If it doesn't work then i'm afraid there is no way of doing this with a GPO on Windows 2000.

Cheers

JamesDS
0
 
eggwhiskAuthor Commented:
Hi JamesDS

The setting is available in 2003 GPO, but the system.adm under 2K does not have this setting.  However I have read that you can add it via a reg key as follows:

"save it as tcpip.adm either into your %systemroot%\inf folder or wherever you want to save it, then add it to your administrative templates in the Group Policy MMC. Make sure to uncheck "Show Group Policies only" in the "View" menu (when "Administrative Templates" is highlighted), as this is not a "Group Policy" but a "Preferred Setting"; it will not revert back to the original setting if you remove the "policy". Don't set this policy to "disabled". Test it before you apply it in earnest."
Trouble is it doe snot make sense top me.  Can you deduce "what" should be saved as in the .reg key.  I would like to understand how to do this.
Thanks a lot in advance
eggwhisk
0
 
JamesDSCommented:
eggwhisk

that doesn't make much sense to me either!

However, the reg entry is here:
HKLM\Software\Policies\Microsoft\Windows NT\DNSClient - SearchList

Is that what you were after?

Cheers

JamesDS
0

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now