Link to home
Start Free TrialLog in
Avatar of marcperez
marcperez

asked on

Group Policy to set DNS Client settings for VPN users??

When users connect to our Windows VPN they receive an IP from the RAS server (Windows Server 2003).  As such, DHCP is not in effect so the settings to Register the connection with DNS and to use specific DNS servers are not available.  There are Administrative Templates for the generic DNS Client connection settings, but I'm not sure how to apply this to RAS clients only or if I can "publish" a VPN connection/icon with these settings pre-configured.

Currently some of our apps are not functioning because they require lookups that now fail.  Does anyone know how to deal with this via Group Policy or another means?
Avatar of adamdrayer
adamdrayer
Flag of United States of America image
You can pass DHCP scope options from your normal DHCP server to RAS clients

How to Use DHCP to Provide Routing and Remote Access Clients with Additional DHCP Options
http://support.microsoft.com/?kbid=232703

Avatar of marcperez
marcperez

ASKER

This currently takes place - the RAS server is set as a DHCP Relay Agent.  The issue is not what the clients are receiving, but what they are not sending: they don't register their records in DNS at connection, so anything doing a lookup (not VPN client to host, but from some internal host back to the client) fails.
Avatar of adamdrayer
adamdrayer
Flag of United States of America image
It should register.  In the properties for the VPN connection on the client, goto the TCP/IP properties and click the advanced button.  Then go to the DNS tab.  Is "register this connection in DNS" checked?  It should be.  You may also need to check the box below it: "use this connections suffix..." or something like that.  Experiment with and without this last one.
Avatar of marcperez
marcperez

ASKER

Agreed - that is the fix, but that's a manual fix.  The question is whether or not there's an alternative method to address this issue with the 65% of our company that is remote.  The manual fix will literally require about 300 individuals to make these changes to the TCP/IP properties of the VPN Connection - I'd like to find a way to address this globally if possible.
ASKER CERTIFIED SOLUTION
Avatar of adamdrayer
adamdrayer
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial