Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Exchange 2013 & DNS & Active Directory New Install on MS Server 2012

Posted on 2013-12-15
9
Medium Priority
?
671 Views
Last Modified: 2014-03-02
I am trying to finalize a install Exchange 2013 in a small to medium size company.

My points I need to insure I full understanding on is Exchange 2013, DNS and Scheme of Domain Active Directory.

This is not a migration or upgrade.  So not to many mistakes can be made. Its a new Exchange 2013 installation in a domain that has never had exchange installed in it before.

I understand not installing on a domain controller and on a member server only but the DNS is the issue.


1) DNS: Do I need to add DNS Manually to the Exchange Server 2013 which is a member server to the Domain do I add the DNS as:

Primary Zone all its own for the "A". MX" "SPF" etc
or a Secondary Zone which is the same as both Domain Controllers so they are same DNS???


2) Do I need to run a prep for exchange on the Domain Controllers. Like in previous versions of Exchange 2003, 2007 you ran prep to the Scheme of the active directory.

3) DNS: I am insuring I have it setup so it will use Spilt DNS when comes to OWA, RPC over HTTP and Exchange Anywhere so that same URL  Exchange.domainname.com is being used for when you inside and outside the network.

Any other help advice would be greatlyt appreciated.

Thanks, Clint
0
Comment
Question by:Clint Jones
  • 5
  • 3
8 Comments
 
LVL 60

Accepted Solution

by:
Cliff Galiher earned 2000 total points
ID: 39720444
1) I would not add the DNS role to the exchange member server AT ALL. Let the exchNge server and all your clients use your DCs for DNS.

2) The setup will indeed need to update your schema.

3) Split DNS is indeed a common setup.
0
 

Author Comment

by:Clint Jones
ID: 39720454
yes but back in the day for no reason people use to use .local, .pdc etc etc.

So just use the DNS setting for my DC on the NIC card of Exchange server and put all the records in the DNS of the main domain controller???

When installing exchange it will update the active directory scheme for 2013 that is???
0
 
LVL 60

Assisted Solution

by:Cliff Galiher
Cliff Galiher earned 2000 total points
ID: 39720718
That isn't a "back in the day" situation, and it definitely isn't for no reason. Without actually casting an opinion on it myself, since it isn't relevant to your question, all I will say is that plenty of people still choose a private TLD for active directory, like .local, and there are legitimate reasons with pros and cons in doing so. That won't impact your setup either way.

Yes, member servers should always point to a DC for DNS. That is fundamental to active directory working. And since they point to a DC, that is where you can set up more zones and records if you wish. Keep in mind that most times it is unnecessary. Outlook will not rely on MX records or similar when on an internal record. It will instead rely on information in Active Directory itself that it finds via an LDAP query. So as long as your clients are also using DCs for DNS, no extra DNS configuration is required.

Preparing AD for Exchange is part of the Exchange setup process. Review the process here:

http://technet.microsoft.com/en-us/library/bb125224(v=exchg.150).aspx
0
New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

 

Author Comment

by:Clint Jones
ID: 39731026
Yes and I do as well I don't phrase things always in completion because some don't care about the extra details.  I still use .PDC and .BDC but also use Microsoft recommendations on real live domain names with proper DNS setup.

I lucky in the respect I do small to medium size that I use Split DNS and IP is changed on MAC address for internal for security reasons etc...

On what you said "That isn't a "back in the day" situation, and it definitely isn't for no reason. Without actually casting an opinion on it myself, since it isn't relevant to your question, all I will say is that plenty of people still choose a private TLD for active directory, like .local, and there are legitimate reasons with pros and cons in doing so. That won't impact your setup either way.
0
 

Author Comment

by:Clint Jones
ID: 39731031
At the original Questions I knew most of what I asked but I at times for get a step so it is nice to hear it again or in a new way.

In past Exchange installation the scheme is changed and updates to the active directory and wanting to insure I do this part correctly... Active directory issues can be a nightmare even on minor accidentals...

Looking at the link on AD.
0
 

Author Comment

by:Clint Jones
ID: 39897701
There was no help from "Cliff Galiher", other the offense he got from back in the day lol. There no response back on further help. I had googled found the that answer already from the respondent in the question and google is where I found my solution ultimately.  

EE Please delete this questions.  Thanks
0
 

Author Comment

by:Clint Jones
ID: 39898138
I've requested that this question be closed as follows:

Accepted answer: 0 points for ClintStephenJones's comment #a39897701

for the following reason:

There was no help from "Cliff Galiher", other the offense he got from back in the day lol. There no response back on further help. I had googled found the that answer already from the respondent in the question and google is where I found my solution ultimately.  

EE Please delete this questions.  Thanks
0
 
LVL 60

Expert Comment

by:Cliff Galiher
ID: 39898139
Three questions were asked, and my first comment answered all three. Everything else was follow-up, but was neither offensive nor off-topic. Legitimate answers were provided.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to deal with a specific error when using the Enable-RemoteMailbox cmdlet to create a mailbox in the cloud-based service, for an existing user in an on-premises Active Directory.
Here in this article, you will get a step by step guidance on how to restore an Exchange database to a recovery database. Get a brief on Recovery Database and how it can be used to restore Exchange database in this section!
In this Micro Tutorial viewers will learn how they can get their files copied out from their unbootable system without need to use recovery services. As an example non-bootable Windows 2012R2 installation is used which has boot problems.
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

877 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question