What Is DNS Support for Active Directory?

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2

What Is DNS Support for Active Directory?

DNS is the primary name resolution service for Windows Server 2003 and later. Active Directory depends on DNS for domain controller location, and DNS influences Active Directory domain naming. Thus, to fully understand Active Directory, it helps to understand how DNS acts as an integral component in the design of Active Directory.

Active Directory requires:

  • A name resolution service that enables network hosts and services to locate Active Directory domain controllers.

  • A naming structure that enables an enterprise to reflect its organizational structure in the names of its directory service domains.

DNS provides Active Directory with both a name resolution service for domain controller location and a hierarchical design that Active Directory leverages to provide a naming convention that can reflect organizational structure.

Typically, a DNS domain namespace deployed to accommodate the Active Directory mirrors the Active Directory domain namespace. In cases where there is an existing DNS namespace prior to Active Directory deployment, the DNS namespace is typically partitioned for Active Directory, and a DNS subdomain and delegation for the Active Directory forest root is created. Additional DNS domain names are then added for each Active Directory child domain.

DNS data is used to support the location of Active Directory domain controllers also. During or after the creation of the DNS zones used to support Active Directory domains, the zones are populated with DNS resource records that enable network hosts and services to locate Active Directory domain controllers.

The following resource contains additional information that is relevant to this section.