I planned to upgrade our AD for Enterprise Usage, AD before just used for Exchange mail account only. Upgrading also mean we going to move from Windows 2008 to Windows 2008 R2 - taking advantage of single sign in AD as in feature all our applications will be authenticated using AD.
My bos asked me to split out the DNS from AD server so it can be on its own and served others as well (computers that not joining domain). Currently we have DNS server that runs on Linux machine. This new DNS will served as replacement to this Linux DNS.
AD also must be allow to dynamically write on this DNS, plus DNS admin can also do manual entry.
How can I do this? What I know is new DNS must be a domain controller. Does this mean that all user information also duplicated to this new DNS server? If in this case, do RODC plays any role here to reduce this new DNS burden?
Any idea, please? Any notes I can refer to?