After adding DNS to 2008 DC the primary zone is not automatically added.

Posted on 2011-10-02
Last Modified: 2012-05-12
We have a fairly large environment 20+ offices of mixed 2003 and 2008 servers.  Or domain and DNS are integrated on 2003 Domain Controllers.

We have added a 2008 R2 server to one of the remote offices and we have made it a DC. When we installed the AD role we elected not to add the DNS role at that time.

We are now adding the DNS role.   We added it and we notice that in the DNS manager on this server we see the primary domain -- all we see under the Forward Zone is LOCALHOST. Under the Reverse Lookup ZOnes we see many of the reverse zones that exist.  

We are not sure why the primary domain zone is not listed under the Forward Zone branch and we are not sure what we need to do to correct it.

Question by:BladesAway
    LVL 70

    Accepted Solution

    Use DCDIAG to check that all is OK
    LVL 21

    Assisted Solution

    Did you enable zone transfers for that zone?

    Author Comment


    We do not have zone transfers enabled anywhere else and all the other servers in the environment that are AD and DNS controllers have the forward zone as expected.   This DNS server is also set up as AD/DNS integrated so wouldn't that mean it gets the zone from AD and not another DNS server directly?

    Author Comment

    Apparently this issue was due to a delay in replication. Patience is a virtue apparently.  Thats for those that tried ro help.  I'm going to split the points between the two of you because the suggestions you both put forward were valid steps to consider.

    Thank you.
    LVL 11

    Expert Comment

    by:Renato Montenegro Rustice
    Make sure the dns directory partition is scoped correctly. May be this new server is not in the same scope, so it will not receive the updates.

    Check this out:

    DNS zone replication in Active Directory

    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    Join & Write a Comment

    [b]Ok so now I will show you how to add a user name to the description at login. [/b] First connect to your DC (Domain Controller / Active Directory Server) SET PERMISSIONS FOR SCRIPT TO UPDATE COMPUTER DESCRIPTION TO USERNAME 1. Open Active …
    Redirected folders in a windows domain can be quite useful for a number of reasons, one of them being that with redirected application data, you can give users more seamless experience when logging into different workstations.  For example, if a use…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
    This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now