DNS issue on ADDS 2012R2

You can use dcdiag to perform the DNS test against your DCs. More here: https://technet.microsoft.com/en-us/library/cc776854%28v=ws.10%29.aspx

I would highly recommend using the IP settings I shared here as using them fixes most of the known DNS resolution issues in AD domains: http://www.ahmedmalek.com/web/fr/articles.asp?artid=23

Also, use dcdiag and repadmin to make sure that your DCs are in a healthy state and that your AD replication is okay. As for your NPS servers, make sure that they point only to your DNS servers for DNS resolution. You can get more details about the failure by checking events in event v

February 15th, 2015 11:22am

Gents,

my AD environment host two domains in single forest each domain contain tow AD DNS integrated zones also I have two NPS servers in one of the domains sometimes NPS's cant find domain controllers in both domains so I have to restart the domain controller then it will be fixed

all servers has been virtualized

I'm suspecting DNS related issues

is there any test that verify all DNS records and show the missing ones ?

what are the DNS tools or command that verify DNS records ?

best

shad


  • Edited by Shad Qadir 18 hours 12 minutes ago Mistyped
Free Windows Admin Tool Kit Click here and download it now
February 15th, 2015 11:51am

Hi

thanks for your quick replay

I have looked at links your provided me thanks again

I did some research on internet and I found DNSLint tool and I ran it says two glue records is missing from one of the domains.A bug like this should be fixed by simple ipconfig /registerdns or simply restarting the DC I did both but still dnslint tool says two glue records are missing !

any idea or help ?

_S

February 15th, 2015 12:18pm

Hi

thanks for your quick replay

I have looked at links your provided me thanks again

I did some research on internet and I found DNSLint tool and I ran it says two glue records is missing from one of the domains.A bug like this should be fixed by simple ipconfig /registerdns or simply restarting the DC I did both but still dnslint tool says two glue records are missing !

any idea or help ?

_S

If IP settings are not okay then DNS registration might not be done properly. That is why I recommended to review your IP settings.
Free Windows Admin Tool Kit Click here and download it now
February 15th, 2015 12:24pm

hi Ahmed ,

I have two Domains each with two DC's as follow

also checked that and here is the DNS setting on TCP/IP stack:

server name:DC01.abc [first root DC]

server IP:172.30.0.10

DNS01:172.30.0.11

DNS02:172.30.0.10

DNS03:127.0.0.1

--------------

server name:DC02.abc

server IP:172.30.0.11

DNS01:172.30.0.10

DNS02:172.30.0.11

DNS03:172.30.0.1

--------------

server name:DC03.xyz

server IP:172.30.0.12

DNS01:172.30.0.13

DNS02:172.30.0.12

DNS03:127.0.0.1

--------------

server name:DC04.xyz

server IP:172.30.0.13

DNS01:172.30.0.12

DNS02:172.30.0.13

DNS03:127.0.0.1

all DC's are DNS and dynamic update are enabled on all of them

February 16th, 2015 6:16am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics