Ken,
An AD integrated zone is stored in the AD
domain NC underneath the System\MicrosoftDNS container (you can view this using
ADSI Edit). This means that the DNS zones are not replicated forest wide but
domain wide.
This will explain why you only see the
local servers domain.
Hope this helps,
Charlie
-----Original
Message-----
From: Ken Cornetet [mailto:[EMAIL PROTECTED]]
Sent: 25 January 2002 17:11
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] Active
directory integrated DNS zones
Just to make sure I understand: I will create the zone
on BOTH DNS servers as "AD integrated", and then I can make changes
on either and it will propogate? I tried this once, but never saw anything
propogate to the second DNS server. Perhaps I just didn't wait long enough?
-----Original Message-----
From: Callow, David [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 25, 2002
11:42 AM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] Active
directory integrated DNS zones
Ken
AD integrated DNS requires you to
set up the zones in both DNS servers but
both must be AD integrated for the
resilience to function...
i.e. DC1 with AD integrated zone abc.net will move the
dns file onto the AD
partition. Add abc.net to DC2 as an
AD integrated zone and it will copy down
the zone file. After this you will
be able to make DNS changes to either
machine and they will use AD
replication to keep the other DC upto date.
If you have already instead your 2nd DC with a
secondary zone you will need
to promote it to become an AD
integrated zone (properties tab of the zone
itself)
I hope this makes some kind of sense
David Callow (MCSE)
Snr Systems Engineer
Delphis Consulting Plc
-----Original Message-----
From: Ken Cornetet [mailto:[EMAIL PROTECTED]]
Sent: 25 January 2002 16:28
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] Active
directory integrated DNS zones
Yes
-----Original Message-----
From: Chris Green [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 25, 2002
10:45 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Active
directory integrated DNS zones
Are the DNS servers domain controllers?
Chris Green
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]
On Behalf Of Ken Cornetet
Sent: Friday, January 25, 2002 9:38
AM
To: '[EMAIL PROTECTED]'
Subject: [ActiveDir] Active directory
integrated DNS zones
I have two computers in two active directory domains
in a forest:
kii.kimball.com and
ads.kimball.com. Each hosts their respective DNS
zones
as AD integrated zones. I'd like
for each DNS server to handle both
zones.
The 2000 resource kit TCP/IP core
networking book (page 379) claims that
when a DNS server starts it loads
all zones found in AD (if it is
configured
to get zone data from AD), but I
don't see this happening. Each server
loads
it's own zone and ignores the other
(even though they are both in AD).
I've
thought of two possible ways to get
what I want:
1. Make each DNS server standard secondaries for the
other zone.
2. Edit the registry key that
controls which zone the DNS server loads.
I've done #1 and it works, but I can't help feeling
that this is just
"wrong". I'm a bit leery
of #2, but I may try it.
Suggestions?
Am I mis-interpreting the TCP/IP
book?
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
This e-mail and any files transmitted with it are
intended solely for the
addressee and are confidential.
They may also be legally privileged.
Copyright in them is reserved by
Delphis Consulting PLC ["Delphis"] and
they must not be disclosed to, or
used by, anyone other than the addressee.
If you have received this e-mail and any accompanying
files in error, you
may not copy, publish or use them in
any way and you should delete them
from your system and notify us
immediately.
E-mails are not secure. Delphis does not accept
responsibility for changes
to e-mails that occur after they
have been sent.
Any opinions expressed in this e-mail may be personal
to the author
and may not necessarily reflect the
opinions of Delphis.
________________________________________________________________________
This email has been scanned for all
viruses by the MessageLabs SkyScan
service. For more information on a
proactive anti-virus service working
around the clock, around the globe,
visit http://www.messagelabs.com
________________________________________________________________________
This e-mail and any files transmitted with it are
intended solely for the
addressee and are confidential.
They may also be legally privileged.
Copyright in them is reserved by
Delphis Consulting PLC ["Delphis"] and
they must not be disclosed to, or
used by, anyone other than the addressee.
If you have received this e-mail and any accompanying
files in error, you
may not copy, publish or use them
in any way and you should delete them
from your system and notify us immediately.
E-mails are not secure. Delphis does not accept
responsibility for changes
to e-mails that occur after they
have been sent.
Any opinions expressed in this e-mail may be personal
to the author
and may not necessarily reflect the
opinions of Delphis.
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
