<div>
You have the KMS SRV records setup? Under the forward lookup in DNS for your domain this record should exist. _VLMCS._tcp.yourchild.your<wbr />rootdomain<wbr />.internal.<wbr /><br />
<br />
DNS &gt;&nbsp;Server &gt;&nbsp;Forward Lookup Zones &gt;&nbsp;yourchild.yourrootdomain.i<wbr />nternal &gt;&nbsp;_tcp<br />
<br />
If it exists check the settings. You want to have it set to use port 1688 and point to the FQDN of your KMS server. Priority and all of that can be set to 0.<br />
<br />
If it does not exist, create a new SRV record. Right click _tcp &gt;&nbsp;choose other new records &gt;&nbsp;service location (SRV).<br />
<br />
Service: _VLMCS<br />
Protocol: _tcp<br />
Weight: 0<br />
Priority: 0<br />
Port: 1688<br />
Host offering: yourkmsservername.yourchil<wbr />d.yourroot<wbr />domain.int<wbr />ernal. &lt;&lt;&nbsp;you want to terminate the FQDN with a period especially if you're servicing multiple domains.<br />
<br />
In my case my KMS records all point back to a KMS server in the child domain of the forest.
</div>


You have the KMS SRV records setup? Under the forward lookup in DNS for your domain this record should exist. _VLMCS._tcp.yourchild.yourrootdomain.internal.

DNS > Server > Forward Lookup Zones > yourchild.yourrootdomain.internal > _tcp

If it exists check the settings. You want to have it set to use port 1688 and point to the FQDN of your KMS server. Priority and all of that can be set to 0.

If it does not exist, create a new SRV record. Right click _tcp > choose other new records > service location (SRV).

Service: _VLMCS
Protocol: _tcp
Weight: 0
Priority: 0
Port: 1688
Host offering: yourkmsservername.yourchild.yourrootdomain.internal. << you want to terminate the FQDN with a period especially if you're servicing multiple domains.

In my case my KMS records all point back to a KMS server in the child domain of the forest.

<div>
Checked &amp;&nbsp;SRV settings are correct. we tried to update license on affected machines by running command &quot;slmgr.vbs /ato&quot; but geeting error.<br />
<br />
Error is attached for the reference.<br />
<a href="https://filedb.experts-exchange.com/incoming/2013/11_w47/689560/KMS-Error.jpg" target="_blank" class="file-inline" title="Error while updating client for KMS (33 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>KMS-Error.jpg</a>
</div>


Checked & SRV settings are correct. we tried to update license on affected machines by running command "slmgr.vbs /ato" but geeting error.

Error is attached for the reference.
KMS-Error.jpg [https://filedb.experts-exchange.com/incoming/2013/11_w47/689560/KMS-Error.jpg]

KMS-Error.jpg

<div>
<div class="content wysiwyg-content">
KMS(Key Management Service) is installed on one of Domain Controller but is is not functioning and clientmachines are showing windows need to update.
</div>
</div>


KMS(Key Management Service) is installed on one of Domain Controller but is is not functioning and clientmachines are showing windows need to update.

KMS is not functioning properly

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.