JSI Tip 6638. How do I verify the SRV locator resource records for a Windows Server 2003 domain controller?

The SRV record is a DNS resource record that is used to identify computers that host specific services, and is how domain controllers are located.

You can use DNS Manager on a domain controller that hosts DNS to verify that the appropriate zones and resource records are created for each DNS zone. Active Directory creates its' SRV records in the following folders:

<Domain_Name>/Forward Lookup Zones/_msdcs
<Domain_Name>/Forward Lookup Zones/_msdcs

In the above locations, a SRV record should exist for the _kerberos and _ldap services.

NOTE: For a non-Microsoft DNS server, open the %SystemRoot%\System32\Config\Netlogon.dns file in Notepad and verify that the first record is _ldap._tcp.<Domain_Name>

You can use the Nslookup tool:

1. On your DNS server, open a CMD prompt.

2. Type nslookup and press Enter.

3. Type set type=all and press Enter.

4. Type _ldap._tcp.dc._msdcs.<Domain_Name> and press Enter.

Nslookup returns one or more SRV records like:

Server:  jsi001.jsiinc.com

_ldap._tcp.dc._msdcs.jsiinc.com SRV service location:
          priority       = 0
          weight         = 100
          port           = 389
          svr hostname   = jsi001.jsiinc.com
jsi001.jsiinc.com       internet address =
NOTE: If you have multiple network adapters, make sure that an internal adapter is first in the Binding Order.

Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.