How can I stop my Windows domain controllers from dynamically registering DNS names?

A. By default, the netlogon service on a domain controller (DC) registers dynamic DNS records to advertise Active Directory (AD) directory service services. However, you can disable this feature with a registry setting. Perform the following steps:

  1. Start regedit.exe.
  2. Go to HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Netlogon\Parameters.
  3. If the UseDynamicDns value exists, double-click it, and set it to 0.
  4. If the UseDynamicDns value doesn't exist, from the Edit menu, select New, DWORD value.
  5. Enter a name of UseDynamicDns and press Enter.
  6. Double-click the new value, and set it to 0.
  7. Click OK.
  8. Close regedit.
  9. Reboot the server.
If you disable dynamic DNS updates, you should manually create the needed records based on the %windir%\system32\config\netlogon.dns file.
TAGS: Windows 8
Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.