Solved

MS DNS new server

Posted on 2007-11-29
5
158 Views
Last Modified: 2013-12-05
If I add a new DC to my domain and install DNS on it do I have to add a new zone if I want to use it as a backup DNS server? I have 1 DNS server with a zone that is integreated into AD, and I want that same zone on this DC.
0
Comment
Question by:kevlause
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 70

Accepted Solution

by:
KCTS earned 250 total points
ID: 20374535
Just add DNS - If your current DNS is active directory integrated it will replicate automatically. if you are not using AD Integrated DNS then you should - it allows all DCs to hold a primary zone file, gives better integration and security and is more efficient.
0
 
LVL 26

Expert Comment

by:Pber
ID: 20374573
If that new DNS server is a DC in the same domain, it will automatically get the new zone because it's AD integrated.  It usually takes a while to replicate before the zone will show up, but the zone should just show up in the DNS console all by itself.  You do not need to add it.

You may need to point the new DC's client TCP/IP DNS settings to the first DC.

0
 

Expert Comment

by:bwrighty1
ID: 20374609
You should convert you standard zones to active directory integreated zones, some of the benefits are:
1. Multimaster replication (the zone can be eddited on any domain controller).
2. Zones are replicated and synchronized to new domain controllers automatically whenever a new one is added to an Active Directory domain.
3. Directory replication is faster and more efficient than standard DNS replication.
4. Secure dynamic updates.
0
 
LVL 70

Expert Comment

by:KCTS
ID: 20374618
The new DC should point TO ITSELF for DNS if it is a DNS server - NOT to the other DNS server.

You can configure the clients with one DNS server as the preferred DNS server and the other as the Alternate DNS server (either in the TCP/IP settings or DHCP options). While you are at it its a good idea to make the new server a global catalog - go to Administrative Tools, Active Directory Sites and Services, Expand ,Sites, Default first site and Servers. Right click on the new server and select properties and tick the ‘Global Catalog’ checkbox. (Global catalog is essential for logon as it needs to be queried to establish Universal Group Membership)
0
 
LVL 26

Expert Comment

by:Pber
ID: 20374676
KCTS,

I mentioned to point to the first DC for DNS to ensure the zone was transferred and we are dealing with Windows 2000 AD.  I should have clarified a bit.  
As per
http://support.microsoft.com/kb/291382 (Why do I have to point my domain controller to itself for DNS?)
and
http://support.microsoft.com/kb/275278
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Doing AD cleanup with Powershell 9 73
Cannot get DNS to use 2 hosts for the same IP 7 44
Locally Hosted Website DNS cannot be found 7 66
Setting up two DCs 4 47
Some time ago I faced the need to use a uniform folder structure that spanned across numerous sites of an enterprise to be used as a common repository for the Software packages of the Configuration Manager 2007 infrastructure. Because the procedu…
Welcome to my series of short tips on migrations. Whilst based on Microsoft migrations the same principles can be applied to any type of migration. My first tip Migration Tip #1 – Source Server Health can be found listed in my profile here: http:…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question