?
Solved

My 2008 R2 Domain Controller has no PTR record for itself

Posted on 2013-01-09
3
Medium Priority
?
1,177 Views
Last Modified: 2013-01-14
Hello experts,

Just came across an odd situation where one of my Windows 2008 R2 domain controllers does not have a PTR record in the Reverse Lookup Zone of my Active Directory integrated DNS.  

I noticed this by doing an nslookup from my workstation.  Since my primary DNS is the server I'm referring to above, the nslookup window starts with "Default Server: UNKOWN" and the IP address of the server below it.  

All DNS resolution and network functionality is fine.  I'm not sure if this existed for a while or whether it has to do with the fact that I just did some Windows Updates on just this one DC and rebooted it.  

Will the PTR record come back on its own?  Will I cause any problems by simply doing a "ipconfig /registerdns" command on the box.  The TCP/IP properties on the DNS tab have the "register this connection in DNS" option selected.

Please provide feedback - thanks!  I'd like to correct this the right way (and understand what happened here).
0
Comment
Question by:dpmoney
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 18

Accepted Solution

by:
Andrew Davis earned 2000 total points
ID: 38761529
doing  an Ipconfig /registerdns will cause no issue. It is perfectly safe.

Let us know how you go.

Cheers
Andrew
0
 
LVL 26

Expert Comment

by:Leon Fester
ID: 38762127
"Default Server: UNKOWN" and the IP address of the server below it.  
You typically see this if there is no reverse lookup zone for the subnet your server resides.

DNS registration of DC records should occur under any of the following conditions:
You restart the server(reboot)
You restart the netlogon service
These two options will impact on your server;
reboot - server unavailable.
restart netlogon - no user authentication from that server until the service restarts.

The following commans should not impact your server or clients.
You run ipconfig /registerdns
You run dnscmd /dsregdns

You can also add the record manually if desired.
0
 

Author Closing Comment

by:dpmoney
ID: 38776805
This worked in our simulated lab environment without issue so we plan on putting in production as well.  Thanks for your assistance.
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses
Course of the Month11 days, 20 hours left to enroll

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question