Setting-up DNS for Active Directory Users without losing user data.
Snowman
Users (will call ADir), with the wizard correctly settup DNS for me
along the way. Since then, for reasons I canoot fully recall, I have
changed the DNS settings. I believe that the slow logon speed on client
computers is contributed to this.
My problem is that I don't understand how to set up DNS so that it
works with ADir, short of running the ADir wizard again, which would
result in the loss of all my user data, including security group
policies and folder redirection data, not to mention the obvious: the
credentials.
Any help with this matter would be greatly appreciated.
Thanks in advance,
Snowman
![Kevin D. Goodknecht Sr. [MVP]'s profile photo](https://lh3.googleusercontent.com/a/default-user=s40-c)
Kevin D. Goodknecht Sr. [MVP]
There isn't really much you have to do in the DNS server itself, other than
making sure it has a zone for the Active Directory DNS Domain name. It is
recommended this zone allow dynamic updates so the Domain Controllers can
register their own records in the zone.
On Domain Controllers their Primary DNS suffix must match the AD DNS Domain
name exactly and must use the address of the AD DNS server, only. All AD
Domain members must use only this same DNS server in TCP/IP Properties.
If the Active Directory DNS domain name is a single-label name (domain vs.
domain.com) you will need to make registry entries on the Domain controllers
and all member clients.
825036 - Best practices for DNS client settings in Windows 2000 Server and
in Windows Server 2003
http://support.microsoft.com/default.aspx?scid=kb;en-us;825036&sd=RMVP
323380 - HOW TO: Configure DNS for Internet Access in Windows Server 2003
http://support.microsoft.com/default.aspx?scid=kb;en-us;323380&sd=RMVP
300684 - Information About Configuring Windows 2000 for Domains with
Single-Label DNS Names
http://support.microsoft.com/default.aspx?scid=kb;en-us;300684&sd=RMVP
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
https://secure.lsaol.com/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
Ace Fekay [MVP]
Snowman <drfst...@gmail.com> stated, which I commented on below:
Snowman, in a nutshell, and don't forget to read up on the things that Kevin
posted for your sake, just make absolutely sure that all AD machines (the
DC, your clients and any member servers part of the domain) are ONLY using
your internal DNS server that AD is using. This means simply to have this
DNS address the ONLY DNS address in all of your machines' IP properties and
NOT your ISP's.
It will still work for internet resolution because it uses the Root Hints
(the 13 Root servers on the internet). If you don't want to use the Root
Hints, you can configure a forwarder to your ISP's DNS in your DNS server.
Articles 323380 and 300684, which Kevin provided the links for, will show
you how if you are not sure.
--
Ace
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Having difficulty reading or finding responses to your post?
Instead of the website you're using, I suggest to use OEx (Outlook Express
or any other newsreader), and configure a news account, pointing to
news.microsoft.com. This is a direct link to the Microsoft Public
Newsgroups. It is FREE and requires NO ISP's Usenet account. OEx allows you
to easily find, track threads, cross-post, sort by date, poster's name,
watched threads or subject.
Not sure how? It's easy:
How to Configure OEx for Internet News
http://support.microsoft.com/?id=171164
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft MVP - Windows Server Directory Services
Microsoft Certified Trainer
Assimilation Imminent. Resistance is Futile.
Infinite Diversities in Infinite Combinations.
The only thing in life is change. Anything less is a blackhole consuming
unnecessary energy.
===========================