SOA DNS Missing in Child Domain - DCDiag /v /test:DNS

When running  DCDiag /v /test:DNS I receive the following warning
"The A record for this DC was found
The SOA record for the Active Directory zone was not found
Warning: The Active Directory zone on this DC/DNS server was not found (probably a misconfiguration)
Root zone on this DC/DNS server was not found"

The DNS test passes but I am concerned about this message.  We currently have a 5 Root dc's that are all DNS servers strategically placed geographically across the company.  We have 5 child domains that have no DNS servers except the new child domain we are migrating to.  There are four DCs in the new child domain and we have made the decision to make those AD Integrated, receiving all zones from the root DC's of the forest. (which was done first before making the new child domain controllers DNS servers).

If I logon to a new child domain DNS server and click on the root domain (xyz.int) I see the child domain DNS server as the SOA record.  If I click down to the new child domain dns (newchild.xyz.int) there is no SOA record for that DC.  This seems to be what the dcdiag is complaining about.  

Any ideas if I can ingore this or do I truly have a misconfiguration as the warning states.

                 
cweldoncdAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Darius GhassemCommented:
0
cweldoncdAuthor Commented:
No, I guess I was looking at this newchild.xyz.int as a zone but it really isnt.  It is just a folder under the xyz.int zone.  Therefore, it would really have a SOA in the newchild folder.  The obvious solution is to create a zone for the newchild.xyz.int but you would have to delete the folder underneath the xyz.int first wouldnt you?  I really don't want to do that!
0
Darius GhassemCommented:
When you have child domains you want to manage seperately
0
Defend Against the Q2 Top Security Threats

Were you aware that overall malware worldwide was down a surprising 42% from Q1'18? Every quarter, the WatchGuard Threat Lab releases an Internet Security Report that analyzes the top threat trends impacting companies worldwide. Learn more by viewing our on-demand webinar today!

cweldoncdAuthor Commented:
So what would be the steps to making the child domain its own zone in AD-Integrated DNS?  I have multiple domain structure (1 forest) and we are about to begin a collapse of all the computers into the 1 single child domain.  This could be risky since I already have 25 servers in the new domain.
0
Darius GhassemCommented:
What you want to do is create child.domain.com zone this will then replicate over to the other DNS servers since you are running AD integrated zones. The zone will replicate throughout your DNS namespace (tree)
0
cweldoncdAuthor Commented:
Would there be two places that the child.domain.com "contents" would exist?  I guess I am not understading what the end state of DNS would look like and how all of the _msdcs, sites, gc, etc folders would react and how my domain controlles respond to this change.  Would I need to do anything to my domain controllers such as start and stop netlogon, reboot.  A lot to think about here or am I making it to difficult.
0
Darius GhassemCommented:
When you create the child.domain.com zone you would then restart the netlogon service or dcdiag /fix to create the records under the child.domain.com zone which will have all folder listed under the zone.
0
cweldoncdAuthor Commented:
Would you consider this a critical thing to do for my child domain.  Do you forsee Active Directory, GPO's, other applications not working properly if I do not configure this?
0
Darius GhassemCommented:
You need to configure this it will overall cause less issues and give you a manageable domain.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2008

From novice to tech pro — start learning today.