I have a simple single domain AD environment, call it
'companya.abc.xyz.com'.

Originally I built the domain with a single DC that has all of the roles. I
had installed DNS on this server to support the AD environment. The DC
forwards everything it does not know about to the DNS servers for
'abc.xyz.com'. In other words, it only manages the 'companya.abc.xyz.com'
zone.

Since then I have built another DC. I also want to run the DNS service on
this DC. When installing DNS should I specify 'active directory integrated'
or create a 'secondary zone'. What is the best practice for multiple DNS
servers in the same AD root forest?

Thanks!

AD Integrated id the way to go.

hth
DDS

"MikeR" <outriderx@news.postalias> wrote in message
news:%23xWP0mSrHHA.4624@TK2MSFTNGP06.phx.gbl...
>I have a simple single domain AD environment, call it
>'companya.abc.xyz.com'.
>
> Originally I built the domain with a single DC that has all of the roles.
> I had installed DNS on this server to support the AD environment. The DC
> forwards everything it does not know about to the DNS servers for
> 'abc.xyz.com'. In other words, it only manages the 'companya.abc.xyz.com'
> zone.
>
> Since then I have built another DC. I also want to run the DNS service on
> this DC. When installing DNS should I specify 'active directory
> integrated' or create a 'secondary zone'. What is the best practice for
> multiple DNS servers in the same AD root forest?
>
> Thanks!
>

I found some information on a previous post, let me know if this sounds
right..

I added DNS to the second DC. Without configuring anything it already added
the AD integrated zone!

I should now point this DC/DNS servers primary to itself and secondary to
the other DC? And vice-versa on the other DC?

Member servers/workstations can now use both for primary/secondary.

Did I miss anything?

"MikeR" <outriderx@news.postalias> wrote in message
news:%23xWP0mSrHHA.4624@TK2MSFTNGP06.phx.gbl...
>I have a simple single domain AD environment, call it
>'companya.abc.xyz.com'.
>
> Originally I built the domain with a single DC that has all of the roles.
> I had installed DNS on this server to support the AD environment. The DC
> forwards everything it does not know about to the DNS servers for
> 'abc.xyz.com'. In other words, it only manages the 'companya.abc.xyz.com'
> zone.
>
> Since then I have built another DC. I also want to run the DNS service on
> this DC. When installing DNS should I specify 'active directory
> integrated' or create a 'secondary zone'. What is the best practice for
> multiple DNS servers in the same AD root forest?
>
> Thanks!
>

> I added DNS to the second DC. Without configuring anything it already
> added the AD integrated zone!

Great ain't it!!! Now this zone information is replicated between the two
DNS servers, securely, and at the same time as the AD replication. No
replication specifically for DNS.

> I should now point this DC/DNS servers primary to itself and secondary to
> the other DC? And vice-versa on the other DC?

Looks good

> Did I miss anything?


you should be good to go


hth
DDS
"MikeR" <outriderx@news.postalias> wrote in message
news:Ogtmw6SrHHA.1508@TK2MSFTNGP05.phx.gbl...
>I found some information on a previous post, let me know if this sounds
>right..
>
> I added DNS to the second DC. Without configuring anything it already
> added the AD integrated zone!
>
> I should now point this DC/DNS servers primary to itself and secondary to
> the other DC? And vice-versa on the other DC?
>
> Member servers/workstations can now use both for primary/secondary.
>
> Did I miss anything?
>
> "MikeR" <outriderx@news.postalias> wrote in message
> news:%23xWP0mSrHHA.4624@TK2MSFTNGP06.phx.gbl...
>>I have a simple single domain AD environment, call it
>>'companya.abc.xyz.com'.
>>
>> Originally I built the domain with a single DC that has all of the roles.
>> I had installed DNS on this server to support the AD environment. The DC
>> forwards everything it does not know about to the DNS servers for
>> 'abc.xyz.com'. In other words, it only manages the 'companya.abc.xyz.com'
>> zone.
>>
>> Since then I have built another DC. I also want to run the DNS service on
>> this DC. When installing DNS should I specify 'active directory
>> integrated' or create a 'secondary zone'. What is the best practice for
>> multiple DNS servers in the same AD root forest?
>>
>> Thanks!
>>
>
>

Hello Mike,

Thank you for using newsgroup!

Generally, for your situation, we can point the Preferred DNS server to the
same DNS server in the network. We can use another DNS server as the
Alternate DNS server.

Thanks & Regards,

Ken Zhao

Microsoft Online Support
Microsoft Global Technical Support Center

Get Secure! - www.microsoft.com/security <http://www.microsoft.com/security>
================================================== ==
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
================================================== ==
This posting is provided "AS IS" with no warranties, and confers no rights.




--------------------
| From: "MikeR" <outriderx@news.postalias>
| Subject: Second DNS server in AD environment
| Date: Tue, 12 Jun 2007 12:41:40 -0700
| Lines: 17
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2900.3028
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3028
| X-RFC2646: Format=Flowed; Original
| Message-ID: <#xWP0mSrHHA.4624@TK2MSFTNGP06.phx.gbl>
| Newsgroups: microsoft.public.windows.server.dns
| NNTP-Posting-Host: edge2a.lmco.com 192.91.147.194
| Path: TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSF TNGP06.phx.gbl
| Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.dns:3534
| X-Tomcat-NG: microsoft.public.windows.server.dns
|
| I have a simple single domain AD environment, call it
| 'companya.abc.xyz.com'.
|
| Originally I built the domain with a single DC that has all of the roles.
I
| had installed DNS on this server to support the AD environment. The DC
| forwards everything it does not know about to the DNS servers for
| 'abc.xyz.com'. In other words, it only manages the 'companya.abc.xyz.com'
| zone.
|
| Since then I have built another DC. I also want to run the DNS service on
| this DC. When installing DNS should I specify 'active directory
integrated'
| or create a 'secondary zone'. What is the best practice for multiple DNS
| servers in the same AD root forest?
|
| Thanks!
|
|
|

Thanks Danny.

Hi Mike,

I am just writing to see how everything is going. If you have any updates
or need any further assistance on this issue, please feel free to let me
know.

Thanks & Regards,

Ken Zhao

Microsoft Online Support
Microsoft Global Technical Support Center

Get Secure! - www.microsoft.com/security <http://www.microsoft.com/security>
================================================== ==
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
================================================== ==
This posting is provided "AS IS" with no warranties, and confers no rights.




--------------------
| From: "Danny Sanders" <DSanders@NOSPAMciber.com>
| References: <#xWP0mSrHHA.4624@TK2MSFTNGP06.phx.gbl>
<Ogtmw6SrHHA.1508@TK2MSFTNGP05.phx.gbl>
| Subject: Re: Second DNS server in AD environment
| Date: Tue, 12 Jun 2007 15:02:00 -0600
| Lines: 57
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2900.3028
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3028
| X-RFC2646: Format=Flowed; Response
| Message-ID: <OzmrsTTrHHA.4180@TK2MSFTNGP04.phx.gbl>
| Newsgroups: microsoft.public.windows.server.dns
| NNTP-Posting-Host: 12.10.248.51
| Path: TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSF TNGP04.phx.gbl
| Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.dns:3539
| X-Tomcat-NG: microsoft.public.windows.server.dns
|
| > I added DNS to the second DC. Without configuring anything it already
| > added the AD integrated zone!
|
| Great ain't it!!! Now this zone information is replicated between the two
| DNS servers, securely, and at the same time as the AD replication. No
| replication specifically for DNS.
|
| > I should now point this DC/DNS servers primary to itself and secondary
to
| > the other DC? And vice-versa on the other DC?
|
| Looks good
|
| > Did I miss anything?
|
|
| you should be good to go
|
|
| hth
| DDS
| "MikeR" <outriderx@news.postalias> wrote in message
| news:Ogtmw6SrHHA.1508@TK2MSFTNGP05.phx.gbl...
| >I found some information on a previous post, let me know if this sounds
| >right..
| >
| > I added DNS to the second DC. Without configuring anything it already
| > added the AD integrated zone!
| >
| > I should now point this DC/DNS servers primary to itself and secondary
to
| > the other DC? And vice-versa on the other DC?
| >
| > Member servers/workstations can now use both for primary/secondary.
| >
| > Did I miss anything?
| >
| > "MikeR" <outriderx@news.postalias> wrote in message
| > news:%23xWP0mSrHHA.4624@TK2MSFTNGP06.phx.gbl...
| >>I have a simple single domain AD environment, call it
| >>'companya.abc.xyz.com'.
| >>
| >> Originally I built the domain with a single DC that has all of the
roles.
| >> I had installed DNS on this server to support the AD environment. The
DC
| >> forwards everything it does not know about to the DNS servers for
| >> 'abc.xyz.com'. In other words, it only manages the
'companya.abc.xyz.com'
| >> zone.
| >>
| >> Since then I have built another DC. I also want to run the DNS service
on
| >> this DC. When installing DNS should I specify 'active directory
| >> integrated' or create a 'secondary zone'. What is the best practice
for
| >> multiple DNS servers in the same AD root forest?
| >>
| >> Thanks!
| >>
| >
| >
|
|
|