DNS Replication

Posted on 2007-08-01
Last Modified: 2010-03-17
How do i have my Active Directory DNS server replicate one another. I have two Domin Controller and one of hte domain controller is running DNS. I want the other domain controller to also run DNS in the case that the first Domain controller fails then the back domain controller will enable DNS management.

Can both DNS server run at the same time with replicated dns entries?
Question by:jimmysumsing
    LVL 31

    Expert Comment

    by:Toni Uranjek
    Hi jimmysumsing,

    Go to second domain controller, unstall DNS service and create secondary zone for your domain.
    Got o first DNS and configure it to allow zone transfers to second server.
    Transfer the zone.
    On both servers change zone type to primary - AD integrated.

    If you need detailed explanation of these steps, let me know...


    LVL 13

    Expert Comment

    Yes, this can be done. AD will control the replication. You would specify both server addresses on the clients, in that way if a response does not come from the primary server then the client will contact the secondary server.
    LVL 70

    Accepted Solution

    if you use Active Directory Integrated DNS - which is the default - then DNS will replicate to all domain controllers by default and you do not have to do anything, all DCs are DNS servers.

    If you have multiple DCs then it is a good idea to make both global catalog servers - Go to Administrative Tools, Active Directory Sites and Services, Expand ,Sites, Default first site and Servers. Right click on the new server and select properties and tick the Global Catalog checkbox. (Global catalog is essential for logon as it needs to be queried to establish Universal Group Membership)

    Also make sure that all your clients have the IP address of one DC as the preferred DNS server and the IP address of the other as the alternate DNS server. (The DCs should point to themselves as preferred DNS server and to the other as alternate), that way cients will automatically use the other if one fails for any reason.
    LVL 13

    Assisted Solution

    Agree with KCTS for AD Integrated, which is probably what it is.  However, to get the DNS to replicate over to the second DC you have to install the DNS Server service component.  Use Add/remove programs - Add/Remove Windows Components.  Look for the DNS server (Its in there somewhere).  You'll need the server installation CD.  Once the service is installed and if your DNS Server on the other DC is AD Integrated, the zones will replicate.  Give it some time if it doesn't happen right away.  

    If you're not using AD Integrated then you can make the second DC a DNS server with a secondary zone, replicated from the primary as stated by toniur.  However this setup is not as efficient as AD Integrated.  

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Top 6 Sources for Identifying Threat Actor TTPs

    Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

    Do you have users whose passwords are expiring and they are constantly calling you?  Well I sure did and needed a way to put an end to this.  We have a lot of remote users which would not be notified that their passwords were expiring since they wer…
    Occasionally you run into the website or two that will not resolve properly using your own DNS servers.  Some people simply set up global forwarders for their DNS server.  I don’t recommend doing this because it can cause problems resolving addresse…
    This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
    This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

    761 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    15 Experts available now in Live!

    Get 1:1 Help Now