Location: List Archives

List Archives

This forum is an archive of all posts to our mailing list over the past few years.  The forum is set read only therefore to contribute you will need to join our list community.  See more info about this here.

List Archives

Forums >ActiveDir Mail List Archive >List Archives
Subject: [ActiveDir]
Prev Next
You are not authorized to post a reply.

AuthorMessages
scottmc9@xxxx.yyy

12/13/2005 12:52 PM  
Our company has the following DNS architecture (this is
somewhat oversimplified but illustrates the point):


COM


|


ABCCORP  (hosted on UNIX
BIND)


/        
\    
(hosted on AD-integrated       
DIR           
FR     
         UK     
            US -
etc.
(hosted on UNIX BIND)
     W2k3 DNS)



/      |     \  

\              
   \           

\


        AM     EU  
    AS       
Seton (etc)    Gilly
(etc)       Marshal  (etc)  
   (many domains at this level)


      /        
     \        
   \

       Marshal 
(etc)   Seton (etc)   Wong
(etc)

DIR.ABCCORP.COM is the W2k3 AD forest root domain. Currently
clients and WIndows servers capable of DNS self-registration register in
AD. All non-Windows servers are registered in BIND.  I want to
simplify..  simplify  ....simplify the DNS architecture and
host as much as possible on AD-integrated Server 2003 DNS.
Under the current architecture, could this be accomplished
using rendom.exe (Domain Rename tool)? Or would this require an entire AD
restructure and be a logistical nightmare to migrate? What would be the
steps to accomplish this? In the EU.DIR.ABCCORP.COM domain, the AD
implementation is nearly fully implemented and there are many locations.
It is W2k3 forest and domain functional level.
If it would be very difficult to implement, what is the
maximum degree of AD-integrated Server 2003 hosting which could be
achieved given this scenario?


No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.1.371 / Virus Database: 267.13.13/198 - Release Date: 12/12/2005
dejiUser is Offline

Posts:132

12/13/2005 2:32 AM  
Are you looking to reduce the domains, or are you just wondering if it'd be
easy to move the DNS service from BIND to MS DNS? Your question mentioned
rendom and then you called out where DNS is hosted, so it's a bit unclear
which you want to do.

In any case, rendom requires a lot of careful thinking and planning - so yes,
it may be a nightmare to just up and whip out rendom. If, however, you are
simply thinking of relocating the DNS to the 2K3 servers, then that is a
less-intensive exercise.

Sincerely,

Dèjì Akómöláfé, MCSE+M MCSA+M MCT
Microsoft MVP - Directory Services
www.readymaids.com - we know IT
www.akomolafe.com
Do you now realize that Today is the Tomorrow you were worried about
Yesterday? -anon

________________________________

From: ActiveDir-owner@xxxxxxxxxxxxxxxxxx on behalf of Scott McIntosh
Sent: Mon 12/12/2005 4:50 PM
To: ActiveDir@xxxxxxxxxxxxxxxxxx
Subject: [ActiveDir]
Our company has the following DNS architecture (this is somewhat
oversimplified but illustrates the point):

COM

|

ABCCORP (hosted on
UNIX BIND)

/ \
(hosted on AD-integrated DIR FR UK
US - etc. (hosted on UNIX BIND)
W2k3 DNS)
/ | \ \
\ \

AM EU AS Seton (etc)
Gilly (etc) Marshal (etc) (many domains at this level)
/ \ \

Marshal (etc) Seton (etc) Wong (etc)
DIR.ABCCORP.COM is the W2k3 AD forest root domain. Currently clients and
WIndows servers capable of DNS self-registration register in AD. All
non-Windows servers are registered in BIND. I want to simplify.. simplify
....simplify the DNS architecture and host as much as possible on
AD-integrated Server 2003 DNS.
Under the current architecture, could this be accomplished using rendom.exe
(Domain Rename tool)? Or would this require an entire AD restructure and be a
logistical nightmare to migrate? What would be the steps to accomplish this?
In the EU.DIR.ABCCORP.COM domain, the AD implementation is nearly fully
implemented and there are many locations. It is W2k3 forest and domain
functional level.

If it would be very difficult to implement, what is the maximum degree of
AD-integrated Server 2003 hosting which could be achieved given this
scenario?

List info : http://www.activedir.org/List.aspx
List FAQ : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
aricbernardUser is Offline

Posts:2

12/13/2005 2:56 AM  
Your desire is a bit unclear.  Regardless, stop thinking about rendom.
;-)  My guess is that you want to consolidate DNS domains currently hosted on
BIND to W2K3 DC/DNS servers.  This is a fairly trivial exercise from a server
perspective.  The following basic steps are required:



1.    Configure
the BIND server to allow secondary zone transfers to your favorite W2K3 DC/DNS
server.

2.    Configure
the W2K3 DC/DNS server to host a secondary zone for the zone configured in (1)
above.

3.    Modify
the delegation for the zone in the parent zone to include the
W2K3 DC/DNS server.

4.    Modify
the configuration of the zone on the W2K3 DC/DNS server marking it as AD
Integrated.

5.    Wait
for replication of the zone to complete.

6.    Modify
the delegation for the zone in the parent zone to include ALL the
W2K3 DC/DNS servers that will host a copy of the zone.

7.    Remove
the zone from the BIND server.



At this point the W2K3 DNS server will have a copy of the zone “
other options to complete this portion do exist such as forklifting the zone
files which in your case (with many zones) could be much more acceptable from
an administrative perspective.



While the above will work in many environments there could be factors
in your infrastructure that could be problematic such as how DNS is interconnected
throughout the organization, where clients point to for Primary/Secondary,
etc.  One way to work around these potential issues is to reconfigure the BIND
server with a secondary zone (for each moved zone) until you can properly
resolve all the issues associated with the move.



HTH



Aric





From:
ActiveDir-owner@xxxxxxxxxxxxxxxxxx [mailto:ActiveDir-owner@xxxxxxxxxxxxxxxxxx] On Behalf Of Scott McIntosh
Sent: Monday, December 12, 2005
4:51 PM
To: ActiveDir@xxxxxxxxxxxxxxxxxx
Subject: [ActiveDir]



Our company has the following DNS architecture (this is somewhat
oversimplified but illustrates the point):


COM


|


ABCCORP  (hosted on UNIX BIND)


/         \    

(hosted on AD-integrated        DIR  
         FR              
UK                 
US - etc.
(hosted
on UNIX BIND)

W2k3 DNS)


              /  
   |     \        
  \     
            \     

   \



           AM    
EU       AS     
  Seton (etc)   
Gilly (etc)       Marshal  (etc)  
   (many domains at this level)


         /        
     \            \


    Marshal  (etc)   Seton (etc)  
Wong (etc)
DIR.ABCCORP.COM is the W2k3 AD
forest root domain. Currently clients and WIndows servers capable of DNS
self-registration register in AD. All non-Windows servers are registered in
BIND.  I want to simplify..  simplify  ....simplify the DNS
architecture and host as much as possible on AD-integrated Server 2003 DNS.

Under the current architecture,
could this be accomplished using rendom.exe (Domain Rename tool)? Or would this
require an entire AD restructure and be a logistical nightmare to migrate? What
would be the steps to accomplish this? In the EU.DIR.ABCCORP.COM domain, the AD
implementation is nearly fully implemented and there are many locations. It is
W2k3 forest and domain functional level.

If it would be very difficult to
implement, what is the maximum degree of AD-integrated Server 2003 hosting
which could be achieved given this scenario?
You are not authorized to post a reply.
Forums >ActiveDir Mail List Archive >List Archives > [ActiveDir]



ActiveForums 3.7
AdventNet Banner
Friends

Friends

Namescape
Members

Members

MembershipMembership:
Latest New UserLatest:cmilte
New TodayNew Today:0
New YesterdayNew Yesterday:2
User CountOverall:4264
People OnlinePeople Online:
VisitorsVisitors:63
MembersMembers:0
TotalTotal:63
Online NowOnline Now:

Ads

Copyright 2008 ActiveDir.org
Terms Of Use