Professional Documents
Culture Documents
Domain Controllers
• How Service Resource Locator Records Are Used
WoodgroveBank.com
WoodgroveBank.com
Corp.WoodgroveBank.com
Woodgrovecorp.com
What Are Service Locator Records?
• An administrator modifies AD DS
D N S f or D C
ries
1. Que rd s
u lt i p le re c o
nd s with m te
2. Res
p o
D C i n N YC s i
r
e r ie s DNS fo
5. Qu
i n N YC site Local DNS
C
o nd s with D Server
p
6. Res
3. Con
tacts M
IA-DC
1 by u
sing LD
4. MIA AP
-D C 1 r
eturns
sit e i n
fo NYC
MIA-DC1
NYC-DC1
NYC Site Miami Site
Lesson 2: Configuring AD DS Integrated Zones
• What Are AD DS Integrated Zones?
• Enhances security
• Win 2000 Server: A DNS zone can be stored in the domain partition or in
an
application partition(a DNS, but not Schema, config, Domain)
• Administrators can define the replication scope of custom
application partitions
• >Win Server 03: If DC is also a DNS: it will has DomainDNS zone:
DomainDNSzones and forestDNSzones are default application partitions
that store DNS-specific data
Domain
Domain Config
DomainDNSZone
To all domain controllers that are DNS
ForestDNSZones servers in the AD DS forest
CustomApp
To all domain controllers in the replication
scope for the
application partition
How Dynamic Updates Work
e server
Find authoritativ
Local
DNS
Windows Vista Result Server
DNS Client
Find au
thorita
tive se
rver
Result
Attemp
t nonse
cure up
date
Refused
Secure Domain Controller
update with Active Directory
negotia
tion Integrated DNS Zone
Accepte
d
Demonstration: Configuring AD DS
Integrated Zones
In this demonstration, you will see how to configure:
• A DNS zone as AD DS integrated
Benefits:
• DNS information required for AD DS name
resolution is available for clients in the same site as
the RODC
2 1
3
Discussion: Comparing DNS Options for
Branch Offices
• What options other than read-only DNS are available for
implementing DNS in the branch office?
• What are the advantages and disadvantages of
each option?
Lab: Configuring AD DS and DNS Integration
• Exercise 1: Configuring Active Directory Integrated Zones
Logon information
Virtual machine NYC-DC1, MIA-RODC
User name Administrator
Password Pa$$w0rd