Solved

DNS/Active Directory Domain Question

Posted on 2006-06-20
5
208 Views
Last Modified: 2010-04-18
I have domain1 running on server1(the DC for that domain)

I have a 2000 Member server running DNS and DHCP for the same domain.

I am going to be adding a second domain, and am planning on using the same DNS server (new domain, same tree and forest).

If I add the DNS server to domain1 as a DC, is there a problem with using it for the second domain?  Would it be better to just join the DNS server to the domain, and not promote it to a DC?  Also, once I authorize the DHCP server, will it be able to give ip addresses to both domains?

thanks!
Scott
0
Comment
Question by:scottman29
  • 2
  • 2
5 Comments
 
LVL 11

Assisted Solution

by:rafael_acc
rafael_acc earned 125 total points
ID: 16945368
I have to admit that I am not sure. What I can think of instead is that you shouldn't have problems if the dns is not AD integrated. However, you could also use the second domain controller as the dns server for the second domain which I think is better. The purpose of AD domains is to create a sort of security boundary. Having said that, why would you want to use a dns server for a domain and that dns server to belong to another domain!? It doesn't make much sense, does it?

Regarding the dhcp .... it actually depends. When a potential dhcp CLIENT requests an address, the first dhcp server that gets the packet would honour that request. Also, you could have a single machine, joining multiple domains ... So having a single dhcp server serving two domains, doesn't look to me as there would be any problem ...

Cheers
0
 
LVL 51

Accepted Solution

by:
Netman66 earned 125 total points
ID: 16946872
Yes on all counts.

You're better off with DNS on each domain - there's not much overhead.

You can use the one DNS server, but you will have to create the zone manually since it won't be AD Integrated.  You will also need to set it to Secure and Unsecure dynamic updates or the child domain members won't register.



0
 
LVL 5

Author Comment

by:scottman29
ID: 16950685
I would have to say I agree that DHCP shouldn't be a problem serving the 2 domains.  The DNS, well I'm going to keep it as a separate member server for now.  The reason why I've split the network into 2 domains is because we are a school and I am keeping the Staff separate from the Students.

I think I will need to research the DNS issue a bit more because I don't really want to maintain 2 DNS servers.

Thanks for all your help.

Scott
0
 
LVL 11

Expert Comment

by:rafael_acc
ID: 16951287
Why don't you set up some nice folder level permissions access?

Cheers
0
 
LVL 5

Author Comment

by:scottman29
ID: 16951397
oh there will be that as well.  With High School and Middle School students though, you never know if they will try to hack the servers... :(
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question