Prevent DNS Server access via DNS Manager MMC


  • I have multiple DNS servers and multiple domains running on Server 2008 R2. 

    I need to block a specific DC ( with DNS located at from adding a DNS server ( located at, to the DNS Management MMC.

    The primary zone(AD-Integrated) is located on and is being replicated to all domains in the forest.

    Any ideas?

    Thursday, July 18, 2013 4:05 PM


  • I found a work around.  

    Any DC can still add the server, but I restricted permissions on the DNS zones to read-only.

    Friday, July 19, 2013 3:30 PM