locked
is dns server required to install active directory RRS feed

  • Question

  • i have a confusion here.... i have to install active directory on win 2k or 2k3 server.... Can i install it with the help of WINS but not DNS .... is it possible to install AD with WINS installed/configured on server but at same time not any kind of DNS (Third party Server/Service) is installed/configured there????..... thanx

    Thursday, May 6, 2010 11:32 AM

Answers

  • Active Directory clients and client tools use DNS to locate domain controllers for administration and logon. You must have a DNS server installed and configured for Active Directory and the associated client software to function correctly.

    Srv records are created in the DNS and clients uses these records to locate the Domain controllers with in a domain. If you read the below article it clearly mentions all the deltail.

    http://support.microsoft.com/kb/314861.

    Yes Ad indeed can be installed with out DNS but as a matter of fact it doesnt helps.

     

    Thanks

     


    http://www.virmansec.com/blogs/skhairuddin

    Yes AD can be installed without installed DNS on that server, but you need some form of DNS for AD to work.  It can be BIND or other DNS, but you do need DNS...even if it is not Microsoft DNS.  Most people use Microsoft DNS on their internal AD networks. 

    Please give the interviewer the link to this thread :)

     

    Thanks

    Mike


    http://adisfun.blogspot.com;
    • Marked as answer by Miles Li Friday, June 4, 2010 8:57 AM
    Wednesday, May 26, 2010 2:50 AM

All replies

  • No - you require DNS in order for AD to function properly...

    hth
    Marcin

    • Proposed as answer by Meinolf Weber Thursday, May 6, 2010 11:50 AM
    • Unproposed as answer by AUT001 Thursday, May 6, 2010 11:59 AM
    • Marked as answer by AUT001 Monday, May 24, 2010 9:43 AM
    • Unmarked as answer by AUT001 Monday, May 24, 2010 9:43 AM
    Thursday, May 6, 2010 11:35 AM
  • WINS is for NetBIOS name resolution and Active Directory does not register any of the needed services with in WINS.  All service records are registered within DNS for the domain controllers.  When a client wants to find a service related to Active Directory it contacts DNS to determine the service availablity (This is call the DC Locator process) without DNS AD can't function and it won't even allow you to promote a DC if you are unwilling to install the DNS service.  The promotion process will install dns on the dc you are promoting without you having to configure anything, if that helps.

     

    --
    Paul Bergson
    MVP - Directory Services
    MCITP: Enterprise Administrator
    MCTS, MCT, MCSE, MCSA, Security+, BS CSci
    2008, Vista, 2003, 2000 (Early Achiever), NT4
    Microsoft's Thrive IT Pro of the Month - June 2009
    http://www.pbbergs.com

    Please no e-mails, any questions should be posted in the NewsGroup This
    posting is provided "AS IS" with no warranties, and confers no rights.

    • Marked as answer by Miles Li Monday, May 24, 2010 9:01 AM
    • Unmarked as answer by AUT001 Monday, May 24, 2010 9:43 AM
    Thursday, May 6, 2010 12:40 PM
  • You don't have to have DNS installed on that particular server but as Marcin pointed out you do need DNS on your network or AD will not work.  These links are worth looking at:

    http://technet.microsoft.com/en-us/library/cc759550(WS.10).aspx

     

    http://technet.microsoft.com/en-us/library/cc739159(WS.10).aspx

     

    Thanks

    Mike


    http://adisfun.blogspot.com;
    • Marked as answer by Miles Li Monday, May 24, 2010 9:01 AM
    • Unmarked as answer by AUT001 Monday, May 24, 2010 9:43 AM
    Thursday, May 6, 2010 12:41 PM
  • AD rely on DNS name resolution. So DNS name resolution is a requirement for AD installation. 

     

    DNS requirements for installing Active Directory: http://technet.microsoft.com/en-us/library/cc739159(WS.10).aspx

     

     http://technet.microsoft.com/en-us/library/cc759550(WS.10).aspx


    Santhosh Sivarajan | MCTS, MCSE (W2K3/W2K/NT4), MCSA (W2K3/W2K/MSG), CCNA, Network+ Houston, TX http://blogs.sivarajan.com/ http://publications.sivarajan.com/ This posting is provided "AS IS" with no warranties, and confers no rights.
    • Proposed as answer by Vijay Vadher Friday, May 7, 2010 9:23 AM
    • Unproposed as answer by AUT001 Friday, May 7, 2010 10:37 AM
    • Marked as answer by Miles Li Monday, May 24, 2010 9:01 AM
    • Unmarked as answer by AUT001 Monday, May 24, 2010 9:43 AM
    • Marked as answer by Miles Li Friday, June 4, 2010 8:57 AM
    • Unmarked as answer by Miles Li Friday, June 4, 2010 8:58 AM
    Thursday, May 6, 2010 2:36 PM
  • Hello Aut001, You cannot install AD without DNS.

    Please let us know if you need more help from our side.

     

     


    Santhosh Sivarajan | MCTS, MCSE (W2K3/W2K/NT4), MCSA (W2K3/W2K/MSG), CCNA, Network+ Houston, TX http://blogs.sivarajan.com/ http://publications.sivarajan.com/ This posting is provided "AS IS" with no warranties, and confers no rights.
    Monday, May 24, 2010 1:17 PM
  • Mr. Santhosh thanks for ur support...

    In interview question was asked to me that "You have to install AD without DNS and only with the help of WINS. How will you do it?"

    What can be the answer?

    Tuesday, May 25, 2010 5:15 AM
  • Hello,

    you got multiple times the answer that DNS is a MUST for Active Directory. This hasn't changed. So the interviewer hasn't the correct question.

    Would be nice to hear the expected answer from that person.


    Best regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
    Tuesday, May 25, 2010 6:28 AM
  • Active Directory clients and client tools use DNS to locate domain controllers for administration and logon. You must have a DNS server installed and configured for Active Directory and the associated client software to function correctly.

    Srv records are created in the DNS and clients uses these records to locate the Domain controllers with in a domain. If you read the below article it clearly mentions all the deltail.

    http://support.microsoft.com/kb/314861.

    Yes Ad indeed can be installed with out DNS but as a matter of fact it doesnt helps.

     

    Thanks

     


    http://www.virmansec.com/blogs/skhairuddin
    Tuesday, May 25, 2010 6:33 AM
  • Simple answer is you can’t install AD without DNS.  Who is this interviewer? J


    Santhosh Sivarajan | MCTS, MCSE (W2K3/W2K/NT4), MCSA (W2K3/W2K/MSG), CCNA, Network+ Houston, TX http://blogs.sivarajan.com/ http://publications.sivarajan.com/ This posting is provided "AS IS" with no warranties, and confers no rights.
    Wednesday, May 26, 2010 2:02 AM
  • Active Directory clients and client tools use DNS to locate domain controllers for administration and logon. You must have a DNS server installed and configured for Active Directory and the associated client software to function correctly.

    Srv records are created in the DNS and clients uses these records to locate the Domain controllers with in a domain. If you read the below article it clearly mentions all the deltail.

    http://support.microsoft.com/kb/314861.

    Yes Ad indeed can be installed with out DNS but as a matter of fact it doesnt helps.

     

    Thanks

     


    http://www.virmansec.com/blogs/skhairuddin

    Yes AD can be installed without installed DNS on that server, but you need some form of DNS for AD to work.  It can be BIND or other DNS, but you do need DNS...even if it is not Microsoft DNS.  Most people use Microsoft DNS on their internal AD networks. 

    Please give the interviewer the link to this thread :)

     

    Thanks

    Mike


    http://adisfun.blogspot.com;
    • Marked as answer by Miles Li Friday, June 4, 2010 8:57 AM
    Wednesday, May 26, 2010 2:50 AM
  • Well said Mark. But as you know the old version of BIND server doesnt actually support the SRV records. Then new BIND has the ability to use the SRV recrods.


    http://www.virmansec.com/blogs/skhairuddin
    Wednesday, May 26, 2010 6:36 AM
  • I know this is a late response ,but if you need a DNS installed for AD DS to work properly, then how would a device such as a camera or a real-time system access the network.  I'm using a radius server and AD DS for MAB for such devices.  I don't believe that this method require the DNS to be installed.

    Wednesday, January 28, 2015 12:38 AM
  • The love between those two are inseparable, AD integrates with DNS and DNS records for NS and services are integrated in AD and DNS, so you can't do that. You can configure WINS as an aditional service but not as "the only pc, services and users locator".

    Wednesday, January 28, 2015 12:52 AM