Does Windows 2003 server can be just DC without DNS?

SAM2009
SAM2009 used Ask the Experts™
on
Does Windows 2003 server can be just DC without DNS?

I mean, can I leave one server with just DC role and another server with DNS role?
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Yes, it can be DC without DNS server. you can create dns server on another pc
Commented:
Hello,

In my opinion please configure DNS server on DC because AD is totally depend on DNS.
Yes, it is possible to configure DNS server on another computer.But why are you wasting your computer.
Please make a domain controller AD integrated with DNS & make a additional domain controller to this DC.

Please configure DNS server - Forward & reverse lookup zone.

http://www.windowsreference.com/dns/step-by-step-guide-for-windows-server-2003-domain-controller-and-dns-server-setup/

http://www.scribd.com/doc/432033/Windows-2003-DNS-Step-by-Step     

http://www.windowsreference.com/windows-server-2003/how-to-create-an-additional-domain-controller-in-win-server-2003/

Regards,
Tushar Kaskhedikar
Premkumar YogeswaranSr. Analyst - System Administrator
Commented:
Hi SAM,

Microsoft recommended is to have the DNS in the same DC..

May i know why you are trying to do this changes...?
Is there any specific reason for this..?

i also personnaly recommend to have the DNS server in the DC itself...

Cheers,
Prem
CompTIA Cloud+

The CompTIA Cloud+ Basic training course will teach you about cloud concepts and models, data storage, networking, and network infrastructure.

Krzysztof PytkoSenior Active Directory Engineer
Top Expert 2012
Commented:
Yes you can. But at least one DNS server has to be available in domain environment because whole domain is based on DNS service.

In the most cases DNS server is set up on the first DC during its promotion. And it is the best practice for Windows. It's much easier to troubleshoot domain and DNS problems when you have it on one server :)

You can read also this article about DNS service out of DC what pluses and minuses it has.
http://support.microsoft.com/kb/275278

Regards,
Krzysztof

Author

Commented:
For my case it is because one old server have to be demoted and that server has all roles:DC,DNS,DHCP

The prob here, I plan to transfert the roles on the new server except DC role because there is an IIS application runing on it.

If DC role is removed than the security will be changed and we will a have prob with that IIS application. That is why I asked if I can just keep DC role on old server until we move the IIS application.
Krzysztof PytkoSenior Active Directory Engineer
Top Expert 2012

Commented:
OK, but you still need AD. If you demote your DC you will back to workgroup environment ?
Do you have any other DC in your company? If so, move these services there.

OK, something strange for me :)
You want to demote old DC in one sentence but in other you ask if you can leave it on the old server ?
Could you explain it a little bit more, please?

Regards,
Krzysztof

Author

Commented:
Humm I don't understand if you continue to read I said:

"The prob here, I plan to transfert the roles on the new server except DC role because there is an IIS application runing on it.
"

Do I  forget something :)
Krzysztof PytkoSenior Active Directory Engineer
Top Expert 2012
Commented:
OK, so  if your old DC will be still available, you can temporaily transfer DNS service.

But remember that it will be only secondary zone. After you synchronize DNS zone(s),uninstall DNS service from DC and on other server where DNS is, transform it to Primary zone (the only way to have read/write zone) :)

Regards,
Krzysztof

Author

Commented:
Thank your for all comments!

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial