Configure DNS Information for Active Directory

  • Article
Cc526435.chm_head_left(en-us,TechNet.10).gif Cc526435.chm_head_middle(en-us,TechNet.10).gif Cc526435.chm_head_right(en-us,TechNet.10).gif

Configure DNS Information for Active Directory

There is an additional DNS configuration that you must perform for the internal Active Directory directory service integrated zone.

Tasks

  1. Create the Reverse Lookup Zone
  2. Create Reverse Lookup Pointers for Domain Controllers

Create the Reverse Lookup Zone

A reverse lookup zone provides the ability to make efficient reverse lookups for services that require this functionality.

Use the DNS console on AD01 to create the reverse lookup zone, using only secure dynamic updates. The replication scope must be to all domain controllers in the domain.

Procedure DWCM.11: To create the reverse lookup zone on AD01 and apply it to all domain controllers

  1. On AD01, click Start, point to Administrative Tools, and then click DNS.
  2. In the DNS console, expand the AD01.
  3. Right-click Reverse Lookup Zones, and then click New Zone.
  4. On the Welcome page, click Next.
  5. On the Zone Type page, select Primary zone, ensure that the Store the zone in Active Directory check box is selected, and then click Next.
  6. On the Active Directory Zone Replication Scope page, select To all domain controllers in the Active Directory domain fabrikam.com, and then click Next.
  7. Enter the subnet network ID for your internal network, or work with your network team to verify the reverse lookup zone IP range for your environment. Click Next.
  8. On the Dynamic Update page, select Allow only secure dynamic updates (recommended for Active Directory), and then click Next.
  9. Click Finish.

Create Reverse Lookup Pointers for Domain Controllers

Create pointer records for AD01 and AD02 in the reverse lookup zone you created in the previous steps. Then, verify these pointers.

Procedure DWCM.12: To add pointer records for AD01 and AD02 in the reverse lookup zone

  1. On AD01, at a command prompt, type ipconfig /registerdns, and then press ENTER.
  2. Repeat on AD02.

Procedure DWCM.13: To verify pointer records for AD01 and AD02 in the reverse lookup zone

  1. On AD01, click Start, point to Administrative Tools, and then click DNS.
  2. In the DNS management console, expand AD01 server.
  3. Expand Reverse Lookup Zones, and then select the reverse lookup zone that you created in the previous section.
  4. Verify that pointer records have been created for AD01 and AD02 in the reverse lookup zone.