OS X clients and Dynamic DNS (Active Directory)


Was looking for some solid advice on getting Mac computers to dynamically update their IP addresses to a Windows-based DNS server running Active Directory. I have the Dynamic updates set to Secure Only at the moment and would prefer to leave it that way but their has to be a way to get the mac's to register. I know how to get non-domain joined (workgroup) computers to register in DNS but not Mac and other Linux computers. I realize that setting Dynamic Updates to Secure and unsecure will work but that is not an option for us. I'm also hoping that joining the Mac to the domain is also not only way :o)

Any advice would be appreciated.

BSG IT TeamIT ManagerAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Besides joining the machine to the domain, the only way is to set DHCP to "Always dynamically update DNS A and PTR records" (go the properties of the scope > DNS tab).  This way the DHCP server will be doing the registration of the record instead of the individual machines.
BSG IT TeamIT ManagerAuthor Commented:
What about using a Mac Server (running DNS) in combination with AD/DNS?
No idea, but I would ask, why?  You've already got all you need to make this work, why add more?

Actually, I don't think it would work anyway.  You'd have to have the zone on the Mac server be a secondary in order for the zone to transfer from the Windows primary zones.  New records still have to be added to the master (primary) zone, so the secondary gets you nothing.
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

BSG IT TeamIT ManagerAuthor Commented:
So, what is the main difference between "Dynamically update DNS A and PTR records only if requested by DHCP clients" and "Always dynamically update DNS A and PTR records" with respect to my question? How does changing this option allow Mac's to suddenly register when they couldn't before?
Normally a client is responsible for registering their own record.  For a zone which only allows secure dynamic updates, the client needs to be able to authenticate to the domain.  If they're domain members, I think they'll be able to register either way.  But if I'm wrong about this last statement, or if they're not members of the domain, setting "Always dynamically update DNS A and PTR records" means that it is the Windows DHCP server (instead of the client) that will create the records.

A topic that is often discussed in conjunction with dynamic updates is record scavenging, and the DHCP settings (including DNS credentials and use of the DNSProxyGroup) can play a big part in this.  I suggest you read this link for some good info on suggested settings and how this all ties together.
BSG IT TeamIT ManagerAuthor Commented:
Thank you sir!

Very good article.

So far, a combination of that setting change in DHCP mentioned earlier and joining the macs to the local active directory has fixed my problem. I am now seeing host records for both thunderbolt ethernet adapters and wifi adapters.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
BSG IT TeamIT ManagerAuthor Commented:
Solved my issue.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Mac OS X

From novice to tech pro — start learning today.