T
Taranjeet Singh
Non-AD Integrated DNS Servers
Hi everyone
We’re in a situation that demands for deploying non-AD integrated DNS (I’m refraining myself explaining why to keep the focus to the actual question). It is going to be a member Windows DNS server joined to the AD domain (say abc.com), but would be hosting disjoint DNS Zones (say xyz.com).
I’m evaluating the downside of doing it when compared to using AD-integrated DNS and identified couple of them as below – would appreciate inputs from the community if there’s anything else that I’m missing out OR correct me if at all the below concerns are invalid:
Downsides of Deploying non-AD integrated DNS:
1. We compromise on the out-of-the-box AD-integrated replication of DNS and have to build this manually to make the DNS service highly-available.
2. Will the domain (abc.com) joined machines be able to dynamically register ‘A’ records in this DNS server?
I know when the DNS is AD-integrated, the domain joined systems are authenticated and can dynamically register ‘A’ (and other records) in the DNS. However, in this case the DNS server (although the member of the same domain), is hosting non-AD integrated DNS zones. Will the machines be able to register to DNS zone by default, or some configuration would be needed to all the machines?
Thanks
Taranjeet Singh
Continue reading...
Hi everyone
We’re in a situation that demands for deploying non-AD integrated DNS (I’m refraining myself explaining why to keep the focus to the actual question). It is going to be a member Windows DNS server joined to the AD domain (say abc.com), but would be hosting disjoint DNS Zones (say xyz.com).
I’m evaluating the downside of doing it when compared to using AD-integrated DNS and identified couple of them as below – would appreciate inputs from the community if there’s anything else that I’m missing out OR correct me if at all the below concerns are invalid:
Downsides of Deploying non-AD integrated DNS:
1. We compromise on the out-of-the-box AD-integrated replication of DNS and have to build this manually to make the DNS service highly-available.
2. Will the domain (abc.com) joined machines be able to dynamically register ‘A’ records in this DNS server?
I know when the DNS is AD-integrated, the domain joined systems are authenticated and can dynamically register ‘A’ (and other records) in the DNS. However, in this case the DNS server (although the member of the same domain), is hosting non-AD integrated DNS zones. Will the machines be able to register to DNS zone by default, or some configuration would be needed to all the machines?
Thanks
Taranjeet Singh
Continue reading...