Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Indentify primary DNS server in AD

Posted on 2011-02-14
6
Medium Priority
?
391 Views
Last Modified: 2012-05-11
Folks

Probably a fairly trivial question but for the life of me I can't seem to find an easy answer.

I have just "inherited" the management of a fairly complex - and undocumented - AD infrastructure.

Is there any easy way to locate where is the "master" DNS server in the infrastructure (I sure hope there only one :) ?

Any suggestion most welcome

Regards
0
Comment
Question by:Alexandre Takacs
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 22

Expert Comment

by:Joseph Moody
ID: 34888993
If it is active directory intergrated, you don't really have a master DNS.
0
 
LVL 17

Expert Comment

by:Premkumar Yogeswaran
ID: 34889026
Hi,

If your domain infrastructure is 2k, 2003 or 2008, if it is AD integrated. Then there wont be any master DNS in that...!

All can be a master..!

If it is not AD integrated and using a stand alone then you will have Primary DNS and secondary DNS...!

Hope this helps your question...!

Regards,
Prem
0
 
LVL 11

Accepted Solution

by:
Tasmant earned 2000 total points
ID: 34889048
You need to understand that with AD theres not always a "master" DNS server.
If the zone are AD integrated, then it depends of the scope of replication for the zone.
It can be :
- every DNS server in the forest (every DNS server in the forest will have a read/write copy of the zone)
- every DNS server in the domain (every DNS server in the domain will have a read/write copy of the zone)
- every DC in the domain (the DNS zone will be stored on every DCs) but only DNS server can update the information.

Replication occurs through AD, theres no master.
It exists a SOA for the zone, and NS associated, but all of them can update the records in the zone.

If the zone is not AD integrated, then you can review the SOA:
nslookup -type SOA zone.com
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 
LVL 44

Expert Comment

by:Amit
ID: 34889054
0
 
LVL 1

Author Comment

by:Alexandre Takacs
ID: 34889058
Sorry should have mentioned - non AD integrated (don't ask...).
0
 
LVL 1

Author Closing Comment

by:Alexandre Takacs
ID: 34889097
> nslookup -type SOA zone.com

gotcha
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question