Dynamic update

cssd
cssd used Ask the Experts™
on
what can be done for Active Directory servers that are DNS servers and will not dynamic update dns recordes? or will not let user dynamic update their recordes?
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
-- Have you selected dynamic Updates on the server ?
-- If yes then please tell if Ad Replication is working fine on the network .
 
However i would like to know the Message you are getting or the exact issue which is going on .

thanks.

Author

Commented:
I am new at the job so were do is look for find if dymanic updates has been selected?

I am running dcdiag and getting the message listed below.

              TEST: Dynamic update (Dyn)
                  Warning: Dynamic update is enabled on the zone but not secure student.cssd.ab.ca.
                  Warning: Failed to add the test record _dcdiag_test_record in zone student.cssd.ab.ca.
                  Warning: Failed to delete the test record _dcdiag_test_record in zone student.cssd.ab.ca.

thanks for you time and any help
Please Expand Forward Lookup Zone after opening up dns managemet consol dnsmgmt.msc and right click on the Domain Zone  student.cssd.ab.ca. go to the properties and you should see the option for Dynamic Update, As per this it says Update is enabled but they are selected Secure and Nonsecure both You can select the option for Secure if you want to fix this .

-- Please let us know if you have any concerns regarding the issue .

Thanks .
HTML5 and CSS3 Fundamentals

Build a website from the ground up by first learning the fundamentals of HTML5 and CSS3, the two popular programming languages used to present content online. HTML deals with fonts, colors, graphics, and hyperlinks, while CSS describes how HTML elements are to be displayed.

Author

Commented:
i have made the change to Secure for it was set to Nonsecure and apply the update. On this panel the type is set to Active Directory-Intergrated and Replaction to only DNS servers in this domain. For more information I have four DNS server in this domain as well for DNS servers in admin domain and three servers in a Forest lever domain. Each domain only replacates to it's on Zone and each domain forwards it request to the forest lever domain in witch will send any outside request to the internet.

I have run the dcdiag /test:dns and still get the same results.
are you still getting all these three Warnings :-

                  Warning: Dynamic update is enabled on the zone but not secure student.cssd.ab.ca.
                  Warning: Failed to add the test record _dcdiag_test_record in zone student.cssd.ab.ca.
                  Warning: Failed to delete the test record _dcdiag_test_record in zone student.cssd.ab.ca.

Or is it gving any specific one ?

Please rename netlogon.dnb ,netlogon.dns under C:\windows\config and type net stop dns & net stop netlogon & ipconfig /flushdns & net start dns & net start netlogon & ipconfig /registerdns and let us know the status .

thanks .

Author

Commented:
After changing the Name Checking to Multibyte (UTF8) all my errors went away. But thanks for the maintenance tips. Question why would anyone use strict RFC as to multiblye for name checking?
Strict RFC (ANSI):- This method strictly enforces RFC-compliant naming rules for all DNS names that the server processes. Names that are not RFC-compliant are treated as erred data by the server .

In Your case i think it was sending errors as few names under DNS might not fulllfill Strict RFC (ANSI) Format as it "strictly enforces RFC-compliant naming rules for all DNS names" and thats why changing it to Multibyte (UTF8) which  allows names that use the Unicode 8-bit translation encoding scheme, which is a proposed RFC draft, to be used with the DNS server, fixed the issue .

By default, the server uses Multibyte (UTF8) to check names.

Microsoft's machine naming is based on NetBIOS names which supports a much wider character set the underscore (_), and the exclamation mark (!). The underscore is particularly common in Windows-based networks, and when these are combined with UNIX-based networks problems might surface.

Microsoft's Windows 2000/2003 DNS supports alternate character set defined in RFC 2181 which specifies that a DNS label can be any binary string that does not necessarily need to be interpreted as ASCII. Thus Microsoft suggests the use of UTF-8 character encoding that is a superset of ASCII and a translation of Unicode.

From :-  

http://technet.microsoft.com/en-us/library/cc779394(WS.10).aspx
http://www.petri.co.il/naming_convention_in_windows_2000_2003_dns.htm

Thanks .

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial