Solved

The Active Directory integrated DNS zone _msdcs.?????.LOCAL was not found

Posted on 2014-04-18
2
4,267 Views
Last Modified: 2014-04-30
I ran Best Practices at all three of our locations on the DNS role.  2 of the locations got the error "The Active Directory integrated DNS zone _msdcs.?????.LOCAL was not found".

We aren't have any DNS issues.  Should I be concerned?

I read one article on it, but I'm not comfortable trying to fix it myself.

Any advice?
0
Comment
Question by:J.R. Sitman
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 37

Accepted Solution

by:
Mahesh earned 500 total points
ID: 40009936
You mean to say you don't have _msdcs.domain.local AD integrated Zone in DNS ?
Has some body deleted that zone ?
If some body has deleted that zone, there is workaround for that

Please check \ expand your domain.local zone and find out do you have _msdcs delegation or _msdcs folder there..
If folder is there you will also find DC, Domain, GC, PDC and CNAME record for DCs as well with _msdcs folder and then you don't have to worry about any thing.

However, If only delegation is there as per below snapshot, then
_Msdcs DelegationAs shown in above screen shot, Just check your domain. Local zone, expand it and find one delegation called _msdcs
You need to simply delete this delegation entry and restart netlogon service on DC
This will create _msdcs folder under domain.local zone with all sub folders which is as good as _msdcs.domain.local and also replicate it to all domain controllers in domain.

_msdcs Folder
Now check if CNAME for DC is auto populated under _msdcs folder or not
if you don't find one, you can simply create one

Check below EE article on same topic
http://www.experts-exchange.com/Networking/Protocols/DNS/Q_28406354.html#a39982343

Mahesh.
0
 

Author Closing Comment

by:J.R. Sitman
ID: 40032453
Thanks.  All is good.  Don't know why I'm getting the message.
0

Featured Post

Webinar: Aligning, Automating, Winning

Join Dan Russo, Senior Manager of Operations Intelligence, for an in-depth discussion on how Dealertrack, leading provider of integrated digital solutions for the automotive industry, transformed their DevOps processes to increase collaboration and move with greater velocity.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A hard and fast method for reducing Active Directory Administrators members.
Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

729 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question