Solved

Active Directory DNS issue

Posted on 2013-05-10
5
321 Views
Last Modified: 2013-06-04
I have a server2003 Domain and trying to get ready to move to 2008 domain. I have already completed the prep etc... I changed my DNS to active directory integrated. I have 3 DNS servers on my domain. One of my DNS servers is still showing that it is a secondary rather than active directory integrated. The other 2 DNS servers both show AD integrated. I am not sure why the 3rd is not changing. It has been over a week and I thought maybe a replication problem. I cant figure it out. ANy help is greatly appreciated!
0
Comment
Question by:eli290
  • 4
5 Comments
 
LVL 10

Expert Comment

by:jmanishbabu
ID: 39155385
When Windows DNS server is installed on at least one domain controller and has Active Directory–integrated zones, the zone data is always replicated to every domain controller in the domain.
0
 
LVL 10

Expert Comment

by:jmanishbabu
ID: 39155393
DNS domains and Active Directory domains share identical domain names, it is easy to confuse their roles. The difference is that the two namespaces, although sharing an identical domain structure, store different data and, therefore, manage different objects: DNS stores zones and resource records and Active Directory stores domains and domain objects. Both systems use a database to resolve names.

Did you try restarting the Netlogon service?  

Paste the events or screenshots.
0
 

Author Comment

by:eli290
ID: 39155415
Ok one thing I did just notice is that the DNS server in question is not a DC... That would make sense why it would not be recognizing the Active Directory integrated DNS....

Would you suggest doing a dcpromo on this server and make it an DC or just go back to the way it was before with the primary/secondary setup?
0
 
LVL 10

Expert Comment

by:jmanishbabu
ID: 39155819
Of course The system should be DC if you need the AD - DNS integrated .
0
 
LVL 10

Accepted Solution

by:
jmanishbabu earned 500 total points
ID: 39155830
The Primary - Secondary Concept and AD integrated DNS have a lot of difference.

AD-Integrated DNS stores its information in the NTDS.DIT file with AD database, so it provide same security & central point of administration. Dns information replication is taken by AD replication mechanism & it doesn't require manual creation of DNS zone on each DC with DNS service installed where as Non AD-Integrated DNS zone information is stored in separate DNS file located at system32/dns folder & it is limited to the server where its been created or you have to use zone transfer to replicate DNS data to another DNS server or manually create the zone on all the DNS server.
using AD integrated zones you can benefit from:

    Replication of the zones using AD replication
    Securing the zone as you can only only secure updates
    Having more than one primary zone for your domain
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now