JSI Tip 7901. How do I use Group Policy to Update Top Level Domain Zones?

Windows XP, Windows Server 2003, and Windows 2000 SP4 and later do not send updates to top-level domains.

You can use Group Policy to Enable the Update Top Level Domain Zones on Windows Server 2003-based computers and on Windows XP-based computers.

The Update Top Level Domain Zones GPO is located at Computer Configuration / Administrative Templates / Network / DNS Client. The Explain tab contains:

"Specifies whether the computers to which this setting is applied may send dynamic updates to the zones named with a single label name, also known as top-level domain zones, for example, "com".

By default, a DNS client configured to perform dynamic DNS update sends dynamic updates to the DNS zone that is authoritative for its DNS resource records, unless the authoritative zone is a top-level domain and root zone.

If this setting is enabled, computers to which this policy is applied send dynamic updates to any zone that is authoritative for the resource records that the computer needs to update, except the root zone.

If this setting is disabled, computers to which this policy is applied do not send dynamic updates to the root and/or top-level domain zones that are authoritative for the resource records that the computer needs to update.

If this setting is not configured, it is not applied to any computers, and computers use their local configuration."

NOTE: See DNS problems in a single-label forward lookup zone?

NOTE: See New group policies for DNS in Windows Server 2003.



Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish