none
resolving domains RRS feed

  • Question

  • Hi guys

    i have tow machine,first machine has active directory and DNS services,the second has just active directory,DNS can resolve only  active directory users in first machine but can't resolve the users in second machine.how to allow the DNS server to resolve all users in the network.how to allow the DNS server to resolve all domain names.

    thanks alot.

    Friday, September 23, 2016 5:33 PM

Answers

  • Hi Ibranhimal,

    >> how to allow the DNS server to resolve all users in the network.how to allow the DNS server to resolve all domain names.

    As Todd mentioned, you need to setup DNS on secondary machine or you could configure first AD as computers primary DNS server.

    In addition, you could install secondary zone on secondary machine, you could reference link below for details information:

    Understanding Zone Types

    https://technet.microsoft.com/en-us/library/cc771898(v=ws.11).aspx

    >> how to allow the DNS server to resolve all users in the network

    Did you mean that you want users were not joined domain to resolve FQDN at the network?

    If yes, please enable Nonsecure and secure dynamic updates on zone properties.

    Best Regards

    John


    Please remember to mark the replies as answers if they help and unmark them if they provide no help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, September 26, 2016 7:58 AM

All replies

  • Just point all machines in the network to the first machine running Active Directory and DNS as their Primary DNS server under network card TCP/IP properties, including both Active Directory servers.  Or, you can install the DNS service on the second machine, and configure DNS service on both Active Directory servers as Active Directory-integrated.

    Best Regards, Todd Heron | Active Directory Consultant

    Saturday, September 24, 2016 11:02 AM
  • Hi Ibranhimal,

    >> how to allow the DNS server to resolve all users in the network.how to allow the DNS server to resolve all domain names.

    As Todd mentioned, you need to setup DNS on secondary machine or you could configure first AD as computers primary DNS server.

    In addition, you could install secondary zone on secondary machine, you could reference link below for details information:

    Understanding Zone Types

    https://technet.microsoft.com/en-us/library/cc771898(v=ws.11).aspx

    >> how to allow the DNS server to resolve all users in the network

    Did you mean that you want users were not joined domain to resolve FQDN at the network?

    If yes, please enable Nonsecure and secure dynamic updates on zone properties.

    Best Regards

    John


    Please remember to mark the replies as answers if they help and unmark them if they provide no help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Monday, September 26, 2016 7:58 AM
  • Thanks a lot Mr.john that was helpful
    Monday, September 26, 2016 3:30 PM