When you add a Windows 2000 DHCP server to the built-in DnsUpdateProxy group, the DHCP server may still own Active Directory-integrated DNS zones that it securely registered on behalf of a downlevel client (Windows NT 4.0).
If a DHCP clustered server fails over, the active node can NOT deregister or reregister the DNS records for the client because both nodes are in the DnsUpdateProxy group.
To workaround this issue, perform any one of the following tasks:
- Open a CMD prompt and reset the secure channel by typing:
nltest /server:<ServerName> /sc_reset:<DomainName>
- Open a CMD prompt and reset the secure channel by typing:
netdom reset <ServerName> /domain:<DomainName>
- Restart the DHCP server.
NOTE: If you have a clustered DHCP server, you must reset the secure channel on each node.
