Solved

DNS Question/Issues

Posted on 2006-11-30
4
269 Views
Last Modified: 2010-04-18
Hi,

I have a Windows 2003 network and we are having issues with DNS. I noticed that some host a records were incorrect. I figured out that this was du to the fact that the computer account didn't have rights on the record. This is the case for some of them (haven't gone through all of them because we have over a 1000 pcs).

What i really want to know is why some A host permissions would not be correct. I don't know of any that would have been created manualy. I can unederstand if a computer was reformatted or replaced with the same name and the computer account was deleted and recreated but this would leave the old SID in the permissions. (some have this) But in my case the records have no computer accounts or unknown SID accounts in the permissions just all the other default ones.

I want to make sure this doesn't happen again so i would would like to know what caused this. Any ideas?

Also i would like to correct this wothout having to go through each record individually. Any ideas?
 
0
Comment
Question by:inf2300
4 Comments
 
LVL 51

Accepted Solution

by:
Netman66 earned 250 total points
ID: 18048192
There are a few reasons for incorrect A records:

1)  The originally registered computer was renamed.
2)  The lease expired on those computers, then the IP was given to another PC.

Scavenging is how to delete stale records - normally, the default behaviour for Scavenging is good as long as the default DHCP lease assignment is still being used.

0
 
LVL 38

Assisted Solution

by:Hypercat (Deb)
Hypercat (Deb) earned 250 total points
ID: 18049070
If you are using DHCP and have it set up to do the DNS dynamic updates, there is a suggested way to get around any possible permissions issues in Win2k3 server.  MS recommends setting up a single user ID to be used for DHCP to update DNS registrations.  You set up a user ID that has membership ONLY in the DNSUpdateProxy group.  Then, go to your DHCP management console, right-click on the server name, click on the Advanced tab, click the Credentials button and put in the user name and password that you set up.  This way, every dynamic update uses these credentials and potential problems are avoided.  

In addition, you need to set up scavenging to get rid of the stale records, as mentioned by Netman66.  Default behavior for scavenging is fine.  However, scavenging is not enabled by default in Win2k3.  So, you need to go and edit the properties of your DNS server(s) to enable scavenging of stale records.  To do this, in the DNS mgmt. console, right-click on the server name and click "Set aging/scavenging for all zones."

Hope this helps!
0

Featured Post

Complete Microsoft Windows PC® & Mac Backup

Backup and recovery solutions to protect all your PCs & Mac– on-premises or in remote locations. Acronis backs up entire PC or Mac with patented reliable disk imaging technology and you will be able to restore workstations to a new, dissimilar hardware in minutes.

Join & Write a Comment

Numerous times I have been asked this questions that what is it that makes my machine log on so slow, there have been cases where computers took 23 minute exactly after taking password and getting to the desktop. Interesting thing was the fact th…
Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
This tutorial demonstrates a quick way of adding group price to multiple Magento products.
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now