Security Issue of DHCP on Domain Controller


  • I remember that sometime ago I read about an issue when deploying DHCP Service on Domain Controllers, but I couldn't find it anymore.

    Is there some contraindication of using Windows 2008 R2 Domain Controller as DHCP Server?

    Thankyou in advance.


    Fabio Martins MCDST/MCSA
    Thursday, February 3, 2011 7:17 PM


  • Hi,


    Thanks for posting here.


    Yes, the reason that we not recommended to install the DHCP Server service configured to perform DDNS update on a DC due to minimize the potential of name hijacking. I think this best practice suggestion is still apply to windows server 2008 base system.

    For more information please refer to the article below:


    Installing Dynamic Host Configuration Protocol (DHCP) and Domain Name System (DNS) on a Domain Controller




    Tiger Li

    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
    Friday, February 4, 2011 7:35 AM

All replies