Manually modifiying the PDC entry in DNS _msdcs zone
eaglesix
one NT4 BDC. The person i had help setup the DNS advised we not set
the msdcs forward zone as dynamic.
The zones are all AD Integrated. But the _msdcs zone is set to allow
no Dynamic Updates. The <domain name> zone does allow secure updates.
My problem is the DNS entry for the PDC is pointing to the wrong DC.
DNS is pointing to the machine that was the first DC in the domain
and
I assume the PDC entry pointing to it is in there due to that.
Using ntdsutil shows the role of the PDC with the correct DC. Running
netdom the PDC Emulator is held by the correct DC not the one
referenced in DNS incorrectly.
nslookup -type=SRV _ldap._tcp.pdc._msdcs.<domainname> pulls up the
wrong PDC entry.
I already had checked netlogon.dns on each of my DNS servers and they
contain the correct entries. I believe it is just tied into the fact
that the zone _msdcs isn't allowing this file to update the DNS
server
that is the problem.
Can i just modify the DNS entry for the PDC to point to the new
machine so everything matches? Do I need to wait until most users
are
off the network? Or can this be done at any time? The network has
been working fine this way for quite awhile. But if machines query
DNS for the DC offering the PDC service they will get the wrong
machine.
I appreciate any help as always