We help IT Professionals succeed at work.

Check out our new AWS podcast with Certified Expert, Phil Phillips! Listen to "How to Execute a Seamless AWS Migration" on EE or on your favorite podcast platform. Listen Now

x

Proper DNS config in AD with mulit remote site servers

Medium Priority
341 Views
Last Modified: 2012-05-11
Would someone please shed some light on proper DNS configs in Active Directory..........

We have (6) DCs.

Each DC has it's own DNS pointing to itself and a random other DC as it's secondary.

There are times when we cannot add clients to the domain unless we point the DNS to an offsite DC.

Are there other steps/procedures when configuring DNS in the domain?

My apologies for the vague details.

Thanks
Comment
Watch Question

JamesSenior Cloud Infrastructure Engineer
CERTIFIED EXPERT

Commented:
When you install Active Directory for the time you create a new Forest and the first DC holds all 5 FSMO Roles. When you install more DCs you have the option to create a new Domain in a existing Forest. These would be Child Domains.  Or you could choose a Forest with a single Domain. For example Domain.local would be your Forest Root Domain, and lets say you want to create a new domain in the Forest - Sales.Domain.local, this would be a Child Domain. So, your Active Directory Topology would be a Parent - Child Domain.

In this senario, when you create a Child Domain this Domain would 3 FSMO Roles - The PDC Emulator Role, the RID Master Role and the Infrastructure Master Role. These 3 FSMO Roles are Domain Wide and the Schema Master Role and the Domain Naming Master Role are Forest Wide. These 5 FSMO Roles are all part of the replication process in Active Directory.

If you choose a Forest with a single domain you have 5 FSMO Roles - as oppose to every Child Domain that would each have 3 FSMO and there can only be 2 Forest Wide FSMO Roles. Automatically there are 2 way transitive trusts setup when you create Child Domains and you have configured the replication links in Sites and Subnets.

Author

Commented:
We choose the option of installing an additional DC in the domain...............

Thanks
CERTIFIED EXPERT
Top Expert 2013
Commented:
Unlock this solution and get a sample of our free trial.
(No credit card required)
UNLOCK SOLUTION

Author

Commented:
When adding an additional DC in a domain are there any special entries needed in the DNS manager? Forwarders, etc.?
JamesSenior Cloud Infrastructure Engineer
CERTIFIED EXPERT

Commented:
That's fine. Some organisations choose mulitple domains for administrative reasons. Other reasons for choosing multiple domains might be because of slow WAN links in geographical regions and this would ease the burden on replication through out the Forest. When designing Active Directory there is alot to consider.
JamesSenior Cloud Infrastructure Engineer
CERTIFIED EXPERT

Commented:
Remember that when you add new DCs that all the SRV records are in place and also if these DCs are in different sites that you have the DCs configured as Global Catalogs Servers as this enable searches through out Active Directory. The most important thing to note is that Active Directory depends on DNS to provide locator services such as Netlogon Servers - Domain Controllers.
JamesSenior Cloud Infrastructure Engineer
CERTIFIED EXPERT

Commented:
Also, if you do have mulitple sites make sure your the sites and the subnets are setup correctly in Active Directory Sites and Subnets.

Author

Commented:
Thanks
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.