Create a new zone delegation

  • Article

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

You can use the following procedure to create a new zone delegation. All domains (or subdomains) that appear as part of the applicable zone delegation must be created in the current zone before you perform delegation as described in this procedure. As necessary, use the DNS snap-in to first add domains to the zone before you perform this procedure. You can perform this procedure by using the DNS snap-in or by using the Dnscmd command-line tool.

Administrative credentials

To perform this procedure, you must be a member of the Administrators group on the local computer, or you must have been delegated the appropriate authority. If the computer is joined to a domain, members of the Domain Admins group might be able to perform this procedure. As a security best practice, consider using the Run as command to perform this procedure.

Creating a new zone delegation

  • Using the Windows interface

  • Using the command line

To create a new zone delegation using the Windows interface

  1. Open the DNS snap-in.

  2. In the console tree, right-click the applicable subdomain, and then click New Delegation.

  3. Follow the instructions in the New Delegation Wizard to finish creating the new delegated domain.

Note

To open DNS, click Start, point to Administrative Tools, and then click DNS.

To create a new zone delegation using the command line

  • At a command prompt, type the following command, and then press ENTER:

    dnscmd ServerName /RecordAdd ZoneName NodeName [/Aging] [/OpenAcl] [Ttl] NS {HostName|FQDN}

    Value Description

    ServerName

    Required. Specifies the Domain Name System (DNS) host name of the DNS server. You can also type the Internet Protocol (IP) address of the DNS server. To specify the DNS server on the local computer, you can also type a period (.)

    ZoneName

    Required. Specifies the fully qualified domain name (FQDN) of the zone.

    NodeName

    Required. Specifies the FQDN of the node in the DNS namespace for which the start-of-authority (SOA) record is added. You can also type the node name relative to the ZoneName or @, which specifies the zone's root node.

    /Aging

    If this command is used, this resource record is able to be aged and scavenged. If this command is not used, the resource record remains in the DNS database unless it is updated or removed manually.

    /OpenAcl

    Specifies that new records are open to modification by any user. Without this parameter, only administrators may modify the new record.

    Ttl

    Specifies the Time to Live (TTL) setting for the resource record. (The default TTL is defined in the SOA resource record).

    NS

    Required. Specifies that you are adding a name server (NS) resource record to the zone that is specified in ZoneName.

    HostName|FQDN

    Required. Specifies the host name or FQDN of the new authoritative server.