Secure dynamic updates fail

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

This problem occurs when attempts by hosts fail to update a Domain Name System (DNS) zone that is configured for secure dynamic updates.

Cause

The host might not be configured properly to allow secure dynamic DNS updates. It might be configured to use an external DNS server, or it might be experiencing other DNS configuration problems.

Solution

First, try to solve this problem by using the troubleshooting information in Dynamic updates for host records fail.

Hosts that perform secure dynamic updates should be members of a Windows 2000 Server or Windows Server 2003 domain, and they should be in a domain that is in the same forest as the DNS server.

Verify that there is no problem with the machine account of the host that is attempting the update. Determine whether other hosts successfully perform secure dynamic updates. If the problem is occurring on only one host, try removing the host from the domain and then rejoining it to the domain.

Verify that a record does not already exist with the same name. By default, records that are created by one host cannot be modified or removed by a different host. If there is an existing record with the same name, delete the existing record and have the host attempt to register again.

To initiate a dynamic update for host and PTR records

• At a command prompt, type the following command, and then press ENTER:

  ipconfig /registerdns