JSI Tip 5356. A DHCP server still owns DNS records when it is a member of the DnsUpdateProxy group?

When you add a Windows 2000 DHCP server to the built-in DnsUpdateProxy group, the DHCP server may still own Active Directory-integrated DNS zones that it securely registered on behalf of a downlevel client (Windows NT 4.0).

If a DHCP clustered server fails over, the active node can NOT deregister or reregister the DNS records for the client because both nodes are in the DnsUpdateProxy group.

To workaround this issue, perform any one of the following tasks:

- Open a CMD prompt and reset the secure channel by typing:

        nltest /server:<ServerName> /sc_reset:<DomainName>

- Open a CMD prompt and reset the secure channel by typing:

        netdom reset <ServerName> /domain:<DomainName>

- Restart the DHCP server.

NOTE: If you have a clustered DHCP server, you must reset the secure channel on each node.



Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish