Solved

DNS invalid entries

Posted on 2013-11-26
5
307 Views
Last Modified: 2014-03-04
Hi
When adding a second DC to our domain (existing W2003 DC, adding a W2012 DC) I made a mistake and ended up renaming the new W2012 machine and re-applying AD.
There are some entries in DNS refering to this now non-existant machine.
Am I safe to delete these entries?
Thanks
0
Comment
Question by:Lewej
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 37

Expert Comment

by:Mahesh
ID: 39677192
if you have used method mentioned in below article
http://technet.microsoft.com/en-us/library/cc816601(v=ws.10).aspx
Then probably DNS records cleanup will take place automatically.

You may change wrong \ false NS records, Host (A) and PTR records if any

In addition you need to do one more cleanup other than DNS
http://technet.microsoft.com/library/cc794759(v=ws.10).aspx

Mahesh
0
 

Author Comment

by:Lewej
ID: 39677224
Hi

Thanks. I did not use the method in the article.

I actually tried to remove the old DC name from AD, and rebuilt the mahcine entirely with a new name. Only later did I notice there are still some entries in DNS referring to the old machine, which clearly was not properely removed.

Hence I do not think re-naming is going to help. As I already have the correct name of the new and active DC in existance. Renaming the old machine to overwrite the new one sounds dodgey to me.

What do you think? As the errant DC anme is only notional, could I not manually delete all entries in DNS?

Thanks agian
0
 
LVL 13

Expert Comment

by:Jaihunt
ID: 39677242
Do you have the correct DNS entries for the renamed active DC. Does the OLD DNS entries and Presently renamed DC DNS entries pointing to the Same IP address ? Please provide the screenshots for both

I believe You can remove the OLD duplicate DNS entries.
0
 
LVL 37

Accepted Solution

by:
Mahesh earned 225 total points
ID: 39677262
Since you have added new ADC with new name, you can remove old entries from DNS pointing to old Dc name if any.

Still I suggest you to run Metadata cleanup to clear old DC references if any

Also check old DC stale entry under active directory user and ciomputers "domain node, System, File Replication Service, and Domain System Volume (SYSVOL share).

Also remove old DC object from active directory sites and services container as well.

Mahesh
0
 

Author Comment

by:Lewej
ID: 39677297
Thanks Mahesh and Jai - much appreciated.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question