Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

DNS Delegation Issue

Posted on 2014-11-20
9
Medium Priority
?
116 Views
Last Modified: 2014-11-24
I am trying to add servers and it resolves successfully but when i click "apply" it throws this error.  

"Failure to write DNS record <server1.> refused"

Thanks
0
Comment
Question by:Sean Kelsey
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
9 Comments
 
LVL 37

Expert Comment

by:Neil Russell
ID: 40455930
Please explain EXACTLY what it is you are trying to do? What gives the error when you try to do what?
0
 

Author Comment

by:Sean Kelsey
ID: 40456130
I am trying to add 2 DC's to DNS delegation but it fails and throws the following error. "Failure to write DNS record <server1.> refused"

Also when I run repadmin /kcc * it says access denied to every DC in the forest. When I run repadmin /syncall etc. replication goes through fine.
0
 

Author Comment

by:Sean Kelsey
ID: 40456135
I also ran DCDAIG /TEST:CheckSecurityError and it comes out successful.
0
Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

 
LVL 37

Expert Comment

by:Neil Russell
ID: 40456143
Can you post the actual output from the repadmin /kcc please
0
 

Author Comment

by:Sean Kelsey
ID: 40456149
In review I found out that it wasnt completely successful. Failed here:
 
Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
    Replicating Directory Changes In Filtered Set
0
 
LVL 10

Expert Comment

by:Walter Padrón
ID: 40456154
Don't fully understand your question but

DC's records doesn't need to be added manually to DNS.
The Netlogon service should register the records, restart the service and wait for 15 min
You can also register records typing     C:\> ipconfig /registerdns

Best regards
0
 
LVL 37

Expert Comment

by:Neil Russell
ID: 40456155
Do you intend to have RODC in the domain? That error is not unusual if you have NOT prepped your domain for RODC but if you dont need them then you can ignore that one.
0
 
LVL 37

Expert Comment

by:Neil Russell
ID: 40456159
You still have not answer "What EXACTLY" is it your trying to do?
Is it as simple as wpadron thinks? Your just adding two dc's to a domain and not seing the DNS records yet?
0
 
LVL 20

Accepted Solution

by:
compdigit44 earned 2000 total points
ID: 40460880
I "assume" you have an existing Zone which you are adding additional DNS servers to, in order to service the zone. Is the Zone AD integrated?  If so check to see if the DNSadmins groups has the proper permissions on the zone...

http://support.microsoft.com/kb/837335
0

Featured Post

Introducing the WatchGuard 420 Access Point

WatchGuard's newest access point includes an 802.11ac Wave 2 chipset, providing the fastest speeds for VoIP, video and music streaming, and large data file transfers. Additionally, enjoy the benefits of strong security as the 3rd radio delivers dedicated WIPS protection!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
Let's recap what we learned from yesterday's Skyport Systems webinar.
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question