Solved

Indentify primary DNS server in AD

Posted on 2011-02-14
6
381 Views
Last Modified: 2012-05-11
Folks

Probably a fairly trivial question but for the life of me I can't seem to find an easy answer.

I have just "inherited" the management of a fairly complex - and undocumented - AD infrastructure.

Is there any easy way to locate where is the "master" DNS server in the infrastructure (I sure hope there only one :) ?

Any suggestion most welcome

Regards
0
Comment
Question by:atak2983
6 Comments
 
LVL 21

Expert Comment

by:Joseph Moody
ID: 34888993
If it is active directory intergrated, you don't really have a master DNS.
0
 
LVL 17

Expert Comment

by:Premkumar Yogeswaran
ID: 34889026
Hi,

If your domain infrastructure is 2k, 2003 or 2008, if it is AD integrated. Then there wont be any master DNS in that...!

All can be a master..!

If it is not AD integrated and using a stand alone then you will have Primary DNS and secondary DNS...!

Hope this helps your question...!

Regards,
Prem
0
 
LVL 11

Accepted Solution

by:
Tasmant earned 500 total points
ID: 34889048
You need to understand that with AD theres not always a "master" DNS server.
If the zone are AD integrated, then it depends of the scope of replication for the zone.
It can be :
- every DNS server in the forest (every DNS server in the forest will have a read/write copy of the zone)
- every DNS server in the domain (every DNS server in the domain will have a read/write copy of the zone)
- every DC in the domain (the DNS zone will be stored on every DCs) but only DNS server can update the information.

Replication occurs through AD, theres no master.
It exists a SOA for the zone, and NS associated, but all of them can update the records in the zone.

If the zone is not AD integrated, then you can review the SOA:
nslookup -type SOA zone.com
0
Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

 
LVL 41

Expert Comment

by:Amit
ID: 34889054
0
 
LVL 1

Author Comment

by:atak2983
ID: 34889058
Sorry should have mentioned - non AD integrated (don't ask...).
0
 
LVL 1

Author Closing Comment

by:atak2983
ID: 34889097
> nslookup -type SOA zone.com

gotcha
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

I wrote this article to explain some important DNS concepts that should be known to avoid some typical configuration errors I often see in forums. I assume that what is described here is the typical behavior of Microsoft DNS client. I don't know …
Synchronize a new Active Directory domain with an existing Office 365 tenant
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now