Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


AD Integrated DNS Transfers

Posted on 2007-10-02
Medium Priority
Last Modified: 2010-03-17
If I have four DNS Servers that are all AD Integrated, do I still need to have the Allow zone transfer checked in the Zone Transfer Tab? I mean if AD is replicating the DNS info why also have Transfer zones? Unless that is just how it is J
Somewhere I cant remember where I read something along the lines that this might degrade system performance by causing unnecessary transfer request.

I might be wrong

Please clarify thanks.
Question by:IT_Resource

Expert Comment

ID: 19998269
No you do not need zone transfers with AD integrated.  
LVL 23

Expert Comment

ID: 19998493
AD integrated DNS will replicate through AD replications thus no need to do any zone transfer.
LVL 70

Accepted Solution

KCTS earned 500 total points
ID: 19998541
With AD integrated DNS the DNS replication is done as part of the normal Active Directory Replication and you do not normally need to bother with zone transfers as such. These only come into their own if you want to replicate to a non-ad integrated secondary zone onr os a third party DNS server.

That said the Allow Zone Transer tab still applies if you chnage from a domain partition to an application directory partition - see http://technet2.microsoft.com/windowsserver/en/library/6c0515cf-1719-4bf4-a3c0-7e3514cef6581033.mspx?mfr=true

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
Wouldn't it be nice if objects in Active Directory automatically moved into the correct Organizational Units? This is what AutoAD aims to do and as a plus, it automatically creates Sites, Subnets, and Organizational Units.
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

571 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question