DHCID record in DNS for domain-member Windows clients

Hi All,

We are maintaining a fairly large (~3500 windows nodes in primary zone, +DMZ, +Unix machines, ~7500 entries in primary DNS zone) windows domain environment, with five 2008 R2 domain controllers, two of them have DNS role, and a separate 2008R2 cluster has the DHCP role.
We just enabled the DHCP name protection a few weeks ago on all DHCP scopes and found a very strange issue: DHCID records are created for domain member Windows 7 workstations. Not only for one or two, but a lot. As far as I now, only non windows workstation should get DHCID. Just to mention, the primary DNS zone is a AD-integrated zone.

We checked the AD object of those machines, they are intact, connection between the machines and AD is fine. No network outage occurred for quite a while, and at least one AD is always available. 

Only this issue, that these records are created is not a big deal by itself, but I'm afraid the root cause of this problem could do more harm, so I really want to find out why this happens.

thank you
Tams

 

July 18th, 2013 3:54am

Hi,

In general, when you enable the DHCP name protection:
To windows DHCP client, create one DNS record (A record).
To non-Windows DHCP client, create two DNS records (A record and DHCID record).
To duplicated non-Windows DHCP client, prevent registry DNS record (none record).

So it seems like your windows clients are regarded as non-windows clients by DHCP server. Would you please tell us something more in detailSuch as, how many domain members got the DHCID records? What are the OS versions of them?

In addition, maybe you can try the follows:

  1. Find the owners of those DHCID records which is stored in DNS (DHCID records can only be added by DHCP servers/clients themselves through dynamic updates).
  2. Check the logs generated by the DHCP Server. Is there any DNS Update related events for these affected Windows Clients?

More information:

Analyze DHCP Server Log Files

http://technet.microsoft.com/en-us/library/dd183591(v=WS.10).aspx

DHCP Step-by-Step Guide: Demonstrate DHCP Name Protection in a Test Lab

http://technet.microsoft.com/en-us/library/ee404786(v=WS.10).aspx

I hope this helps!


Free Windows Admin Tool Kit Click here and download it now
July 22nd, 2013 4:25am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics