Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
How often do DHCP servers authorize with Active Directory (AD)?
John Savill
May 9, 2005
1 Min Read
A. Before a Windows 2000 Server or later DHCP server that's either part of a domain or on a network that has an AD domain can start its DHCP service, the service must be authorized with AD. When the DHCP service starts, it queries AD to confirm its authorization status and continues to query AD every 60 minutes thereafter to confirm that it's still authorized.
DHCP servers that are members of a workgroup send out DHCPINFORM messages asking other DHCP servers on the network to respond. If a DHCP server that's part of an AD domain responds, the DHCP service won't start.
You can change the 60-minute authorization check by performing this registry change:
Start the registry editor (regedit.exe).
Navigate to the HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesDHCPServerParameters registry subkey.
From the Edit menu, select New, DWORD value.
Enter the name RogueAuthorizationRecheckInterval and press Enter.
Double-click the new value and set it to the number of minutes between authorization checks (e.g., 120 for 2 hours) and click OK.
To disable DHCP server authorization checks, perform these steps:
Start the registry editor.
Navigate to the HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesDHCPServerParameters subkey.
From the Edit menu, select New, DWORD value.
Enter the name DisableRogueDetection and press Enter.
Double-click the new value and set it to 1. Click OK.
About the Author(s)
You May Also Like
.jpg?width=700&auto=webp&quality=80&disable=upscale)
_(1).png?width=700&auto=webp&quality=80&disable=upscale)
.png?width=700&auto=webp&quality=80&disable=upscale)