Windows DNS -- Store the zone in Active Directory

Posted on 2009-02-12
Last Modified: 2012-05-06
We have a Windows network with all DNS servers running on Windows Server 2009 Domain Controllers.

When creating new DNS zones, it gives you the option to "Store the zone in Active Directory (available only if the DNS server is a domain controller)".

I am wondering what are the benefits of this?  Does it use Active Directory replication to synchronize between DNS servers?  Does it synchchronize faster?  

Does anyone have any white papers on the benefits of using this option?  I am having a hard time finding anything on the 'net, but it may just be that I'm overlooking it.  A new set of eyes never hurts ;o)

Thanks in advance,
Question by:Rogiee
    LVL 5

    Expert Comment

    Active Directory-integrated zone: An Active Directory-integrated zone is a zone that stores its zone data in Active Directory. DNS zone files are not needed. This type of zone is an authoritative primary zone. Zone data of an Active Directory-integrated zone is replicated during the Active Directory replication process. Active Directory-integrated zones also enjoy the security features of Active Directory.
    LVL 5

    Expert Comment

    Theres more advantages to an AD stored DNS on that site that lists advantages, by the way.
    LVL 12

    Author Comment

    Is "AD Integrated" the same as "Store the zone in Active Directory?"

    I was under the impression that these were different things?
    LVL 5

    Accepted Solution

    Same thing.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Threat Intelligence Starter Resources

    Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

    This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
    If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
    Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    12 Experts available now in Live!

    Get 1:1 Help Now