Solved

Change all dynamic update in DNS Server

Posted on 2011-02-23
4
918 Views
Last Modified: 2012-05-11
Dear All,

I have around 173 revers lookup zone in my DNS and I want to configure all of them for a dynamic update to be secure, I try the following command:

Dnscmd ServerName /Config {AllZones} /AllowUpdate 2
I got the following error:

DNS Server failed to reset registry property.
    Status = 9601 (0x00002581)
Command failed:  DNS_ERROR_ZONE_DOES_NOT_EXIST     9601    0x2581

I need help to apply the settings in all DNS lookup zone.

I have DNS installed on windows 2008 R2

Thanks
0
Comment
Question by:Arabsoft_Security
  • 3
4 Comments
 
LVL 11

Expert Comment

by:M3rc74
ID: 34959378
Windows Server 2008–based DNS clients try to use nonsecure dynamic updates first. If the nonsecure update is refused, clients try to use a secure update.

Also, clients use a default update policy that lets them to try to overwrite a previously registered resource record, unless they are specifically blocked by update security.

By default, after a zone becomes Active Directory-integrated, Windows Server 2008–based DNS servers enable only secure dynamic updates.
0
 
LVL 11

Expert Comment

by:M3rc74
ID: 34959413
or if you dont have AD-integrated zone, read this link
http://technet.microsoft.com/en-us/library/cc753751.aspx
0
 
LVL 11

Expert Comment

by:M3rc74
ID: 34959435
0
 
LVL 11

Accepted Solution

by:
Tasmant earned 500 total points
ID: 34959952
you can use the following command to retrieve all the reverse zones names:
dnscmd /enumzones /reverse
then, for each zone, you can run the command
dnscmd /config 10.10.in-addr.arpa /allowupdate 2
My reverse lookup zone was 10.10 here.
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Occasionally there is a need to clean table columns, especially if you have inherited legacy data. There are obviously many ways to accomplish that, including elaborate UPDATE queries with anywhere from one to numerous REPLACE functions (even within…
This article explains how to reset the password of the sa account on a Microsoft SQL Server.  The steps in this article work in SQL 2005, 2008, 2008 R2, 2012, 2014 and 2016.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now