Hi,
I have been troubleshooting DNS problems on a network I have recently started work on. The domain controllers are not registering SRV entries with event log errors for the netlogon service relating to "dynamic registration or deletion of entries in
root." This was causing a dcdiag test for DNS to fail on all DC's.
I have finally found the cause to be in the way the domain was originally setup. There are essentially two domains in the forest here,
root and child.root - root really only contains two root dc's with the main servers and resources in child.root
The problem seems to be that when they named root they didn't use a fully qualified domain name. The first domain is just called "root" for instance with no .local or .com etc.
I followed this article support.microsoft.com/kb/300684 to enable two group policiesUpdate Top Level Domain Zones& Location of the DCs hosting a domain with single label DNS name
I did this on one of the child DC's as a test, restarted the netlogon service and finally got no errors and I can now see _GC entries being created in DNS.
My question really is for advice on where to go from here. There is obviously something wrong with the initial setup of this domain. Is it simply a case of rolling out this group policy to all root and child DC's or is a domain rename required? What are the
wider implications of using the above policies as a work around?
The forest and domains have a function level of Windows Server 2008 R2. We have a mixture of server 2003, 2008 and 2008 R2 systems on the network.
Any help and advice will be greatly appreciated