 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
Windows Server Forum / Windows 2000 / DNS / February 2006Problem with Secure DDNS
Hi all, I have searched all over the web for some clues on this one but I am getting nowhere. Here is my problem: I have an AD integrated DNS zone which permits secure dynamic updates only. Our clients use DHCP but register their own A and PTR records. We have started to notice that some clients are failing to update and refresh their own records and then when looking at the permissions on these records I see instead of <computername>$ with full control on the ACL we just see an unresolved SID value with full control. It looks like somehow computer account SIDs are getting changed and this is causing them to loose their permissions to update their DNS A and PTR records. I can confirm 100% that these PCs are not being renamed or removed and rejoined to the domain. Deleting the A and PTR records fixes the problem as the client is then able to create fresh records. Any clues as to why this might be happening would be gratefully received. Cheers, S > Hi all, > [quoted text clipped - 18 lines] > Any clues as to why this might be happening would be gratefully > received. Is the Win2k3 DHCP, and was the account configured in DHCP to be used for DNS updates deleted?  SignatureBest regards, Kevin D. Goodknecht Sr. [MVP] Hope This Helps =================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue, to respond directly to me remove the nospam. from my email address. =================================== http://www.lonestaramerica.com/ http://support.wftx.us/ https://secure.lsaol.com/ =================================== Use Outlook Express?... Get OE_Quotefix: It will strip signature out and more http://home.in.tum.de/~jain/software/oe-quotefix/ =================================== Keep a back up of your OE settings and folders with OEBackup: http://www.oehelp.com/OEBackup/Default.aspx =================================== Hi Kevin, We have Win2K3 DHCP servers with settings on the DNS tab as follows Enable DNS dynamic updates according to settings below: = Checked - Dynamically update DNS A and PTR records only if requested by the DHCP clients = Checked Discard A and PTR records when lease is deleted.= Checked On the Advanced Tab the DNS dynamic updates registration credentials are blank?? This would suggest to me that DHCP is not doing any DNS updating on behalf of clients? > Hi Kevin, > [quoted text clipped - 9 lines] > are blank?? This would suggest to me that DHCP is not doing any DNS > updating on behalf of clients? Assign a dedicated user account with a non-expiring password on the DHCP server. SignatureBest regards, Kevin D. Goodknecht Sr. [MVP] Hope This Helps =================================== When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue, to respond directly to me remove the nospam. from my email address. =================================== http://www.lonestaramerica.com/ http://support.wftx.us/ https://secure.lsaol.com/ =================================== Use Outlook Express?... Get OE_Quotefix: It will strip signature out and more http://home.in.tum.de/~jain/software/oe-quotefix/ =================================== Keep a back up of your OE settings and folders with OEBackup: http://www.oehelp.com/OEBackup/Default.aspx =================================== |
Reply to this Message |
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2009 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.