These are the methods I usually use to have domain controllers records recreated/updated: Nltest /dsregdns Re-starting the netlogon service Ipconfig /registerdns Dcdiag /fix
But nltest usually gives me the results I’m looking for. Hope that helps. Rubens Sent from Outlook Mail for Windows 10 phone From: Michael B. Smith Sent: Tuesday, February 2, 2016 7:13 PM To: [email protected] Subject: RE: [NTSysADM] Missing DNS Glue records I can’t see those things. I have old eyes. If you do an “ipconfig /regdns” in the root and on a couple of child DCs, does that help anything or generate any event log errors? Have you done a “dcdiag /fix” ? From: [email protected] [mailto:[email protected]] On Behalf Of Michael Leone Sent: Tuesday, February 2, 2016 3:23 PM To: [email protected] Subject: Re: [NTSysADM] Missing DNS Glue records On Tue, Feb 2, 2016 at 3:04 PM, Michael B. Smith <[email protected]> wrote: > Take a look at \windows\system32\config\netlogon.dns in both a root DNS > server and a child DNS server. Are the glue records present in either one? What exactly am I looking for? I don't see anything that looks like a glue record in either (altho it's entirely possible that I am just missing it ..) The child DNS looks like: The root DNS looks like: (this on the root DC that dcdiag says has broken delegation to the child domain) > > -----Original Message----- > From: [email protected] [mailto:[email protected]] > On Behalf Of Michael Leone > Sent: Tuesday, February 2, 2016 2:37 PM > To: [email protected] > Subject: [NTSysADM] Missing DNS Glue records > > SO I apparently have a big problem. We run a parent-child domain structure > here. And today I noticed that I was having replication failures between the > DCs in the root domain and some of the DCs in the child domain. > > I do dnslint on the DC in the child domain, all is fine. I do dnslint on the > DC in the root domain, and I get errors. Specifically, missing glue records > for all 6 DCs in the child domain. > > I don't know how they could have disappeared. I know we demoted a DC in the > child domain a couple weeks ago, but that was a graceful demotion, and showed > no errors. Nothing was done in the root domain (we actually haven't done > anything manual to it in years). But something screwed up royally, obviously. > > And I'm not sure where to go here. I get that I need to create A records in > my DNS (dunno how they disappeared), but I don't know how to do that, since > they are for the DCs in the child domain. > > And this has to be done at the root domain level, unless I am totally > mis-understanding. > > Any help greatly appreciated. Apparently replication has been screwed up for > 12 or 13 days now. > >
