Solved

Backup/Restore AD DNS Zone

Posted on 2010-09-23
4
502 Views
Last Modified: 2012-05-10
We are going to be making numeorus changes to DNS this coming weekend.  All of our zones are AD Integrated and on Domain Contollers.  

I know to backup a zone we need to run dnscmd /zoneexport myzone backup\myzone.dns.bak.

I would like to make a copy of this backup file, make the necessary changes and restore it back to the same zone.  How can this be done?  This will give us a good hands up if we have to revert back for some reason.
0
Comment
Question by:m698322h
  • 2
  • 2
4 Comments
 
LVL 57

Expert Comment

by:Mike Kline
Comment Utility
Because it is an AD integrated zone you would have to restore the system state and do an authoritative restore as oulined
http://blogs.technet.com/b/networking/archive/2007/05/10/oops-our-ad-integrated-dns-zone-s-are-missing-in-windows-2003.aspx
...my friends at CB5 had another cool method
http://cbfive.com/blog/post/A-Nifty-Trick-to-Backing-up-AD-Integrated-DNS-Zones.aspx
If Jared ever reads this...that was a nifty trick :)
Thanks
Mike
0
 
LVL 5

Accepted Solution

by:
mooodiecr earned 500 total points
Comment Utility
Depending on the size of the DNS and the current state of your zone, you don't necessarily have to perform an authoritative restore.  Don't try just for fun but you if the zone is in good shape and you delete the zone you can always:
net stop netlogon
net start netlogon
ipconfig /registerdns

This will reload the zone from active directory.  Of course this is understanding that the zone is not corrupted IN active directory itself.  

Here is an article about backing up and restoring a known good working DNS AD integrated zone:
http://technet.microsoft.com/en-us/library/ff807395%28WS.10%29.aspx
0
 
LVL 57

Expert Comment

by:Mike Kline
Comment Utility
letting the zone recreate itself won't let them revert back though.
0
 
LVL 5

Expert Comment

by:mooodiecr
Comment Utility
correct ... just an example of a working zone wouldn't quite need a authoritative restore.  

The link was really my answer, I was just long winded about getting there  :S
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

Companies that have implemented Microsoft’s Active Directory need to ensure that the Active Directory is configured and operating properly. If there are issues found and not resolved, it eventually leads the components to fail or stop working and fi…
I've written instructions for one router type, but this principle may be useful for others of the same brand and even other brands of router. Problem: I had an issue especially with mobile devices that refused to use DNS information supplied via…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now