DHCP not updating AD DNS

Posted on 2014-08-07
Last Modified: 2014-08-07
I am having an issue with DNS.
It's worked for yonks and nothing has changed of late - except a power failure...

Site A server A is a 2008 PDC. It's doing DNS & DHCP, Server B is a 2008 BDC also running DHCP
Site B server C is a 2008 BDC doing DNS & DHCP

DNS is not being updated though.

I killed al leases last night and this morning no updates in DNS.
Clients on site A or B are getting leases from only the legitimate servers. I've checked
I then disabled DHCP on Server B just in case.
Machines join the LAN and get lease but still DNS not being updated.
AD appears to be working fine - I can add machines and they are duly replicated. DFS works

I've check security settings and the 3 DC's are allowed to update DNS.
I've also set DHCP to forefullyupdate DNS regardless if the client asks or not.

Also DNS timestamps.
If a user gets a lease yesterday say and then another elase today - say the same IP
Should the timestamp in DNS not be updated also? Some have beenupdated today
but others havent or are missing completely
Question by:Majicthise
    LVL 12

    Expert Comment


    Please verify in your DHCP Console -> IP V4 Properties -> DNS - 'Always dynamically update DNS A and PTR Records' option is set.

    Author Comment

    Hi Thanks for the post.
    It is ticked - Thats what I meant by

    I've also set DHCP to forefullyupdate DNS regardless if the client asks or not.

    Author Comment

    Also meant to say stopped and started the usual DNS/DHCP etc and made no difference
    LVL 34

    Accepted Solution

    Check if dns zone ( and ( is set to secure dynamic update only
    Add both DHCP servers in DNS Update proxy group on domain controller
    Set credentials in DHCP console, otherwise your dhcp-dns integration options will not help to update records
    Check below post for how to achieve this and to understand dns dhcp integration and other options to set correctly

    Author Closing Comment

    Adding and re-entering credentials seems to have sorted the issue.

    I can honestly say I've never added any server to DNS Update group
    And it's worked flawlessly for about 3 years.


    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Join & Write a Comment

    I know all systems administrator at some time or another has had to create a script to copy file from a server share to a desktop. Well now there is an easy way to do this in Group Policy. Using Group policy preferences is not hard. The first thing …
    Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
    This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

    729 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now