Solved

Windows DNS Question

Posted on 2011-09-12
7
282 Views
Last Modified: 2012-05-12
1 2008 R2 DC and 1 2003 DC

In DNS COnfiguration I have 2 direct zones

- xyz.com and
- _msdcs.xyz.com

All hosts are registered  in the xyz.com
I noticed also that the _msdcs in the xyz.com zone is greyed and not accessible

How can I fix DNS and go to a more normal situation?  

Thank you
0
Comment
Question by:gadsad
  • 4
  • 2
7 Comments
 
LVL 8

Expert Comment

by:Amitabh Singh
ID: 36522453
hi
Windows Server 2003 behavior
When the DNS root domain of a new Active Directory forest is created on a Windows Server 2003-based domain controller, two DNS zones are automatically created. One zone is created for the forest root domain; this zone is replicated between all domain controllers in that domain. The other zone is created for the _msdcs.ForestName subdomain; this zone is stored in the forest-wide DNS application directory partition. This partition replicates to all Windows Server 2003-based domain controllers in the forest that are running the Windows Server 2003 DNS Server service.

Full Document can be found in the link below !
http://support.microsoft.com/?id=817470
0
 
LVL 8

Expert Comment

by:Amitabh Singh
ID: 36522472
so you don't need to change anything  its normal in windows 2003 DNS to have 2 Zones , which are automatically created during AD Installation and when you choose Active Directory Integrated DNS
0
 
LVL 11

Expert Comment

by:slemmesmi
ID: 36522494
Dear qadsad,

the _msdcs.xyz.com in your DNS contains service records for your Microsoft domain (e.g. those identifyinig your global catalogs) and you should leave this as is (unless if you for a very specific reason is required to manipulate - e.g. through a Domain Prep or similar).

This article explains a bit more: http://www.windowsitpro.com/article/dns/q-what-s-the-dns-_msdcs-zone-for-the-forest-root-domain-used-for-

Kind regards,
Soren
0
What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

 

Author Comment

by:gadsad
ID: 36522568
I noticed that in some configurations the _msdcs.xyz.com is at the root of the direct zone (and we end up with 2 direct zone) and sometimes it is "included" in the xyz.com (and we are left with only one direct zone: xyz.com)
Is all this normal?
Thanks
 
0
 
LVL 8

Expert Comment

by:Amitabh Singh
ID: 36522774
hi gadsad

do you have Windows 2000 and Windows 2003 Domain Mixed mode or can their was some upgrade from Windows 2000 to Windows 2003 ?
if yes then its normal behavior , Windows 2000 to Windows 2003 Domain migration dose not update DNS configuration and because of that you have _msdcs some places as root zone and some places as a sub-domain .

have a look to the link which i was given it contain all information !
http://support.microsoft.com/?id=817470
0
 
LVL 8

Accepted Solution

by:
Amitabh Singh earned 500 total points
ID: 36522820
fixing information and step by step guide is  also in link
0
 

Author Closing Comment

by:gadsad
ID: 36523687
It is clear now,
thank you
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Group Policy & Netlogin Services 5 48
shadow copies 7 76
ticket bloat 3 27
Enterprise Mode 4 29
So you have two Windows Servers and you have a directory/folder/files on one that you'd like to mirror to the other?  You don't really want to deal with DFS or a 3rd party solution like Doubletake. You can use Robocopy from the Windows Server 200…
The HP utility "HP Lights-Out Online Configuration Utility for Windows Server 2003/2008" could be of great use when it comes to remotely configure a HP servers ILO WITHOUT rebooting the server. We would only need to create and run scripts using thi…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question