Changing DNS Server from UNIX Bind to Windows 2003 DNS

Hi:

The UNIX Bind version is 9.x.x and does support dynamic updates. The
clients that were using this DNS server need to point to the new Windows 2003
DNS server now. If we change the clients from pointing to the UNIX DNS and
now point to the Windows 2003 DNS server will the clients be able to
dynamically register their records on the Windows 2003 DNS server?

We want to get rid of the UNIX Bind DNS server and have the Windows 2003 DNS
service the clients now.

Thanks,
Chuck

"Charles" <> wrote in message
news:BBCB19D9-FDBB-463A-8674-...
> Hi:
>
> The UNIX Bind version is 9.x.x and does support dynamic updates. The
> clients that were using this DNS server need to point to the new Windows
> 2003
> DNS server now. If we change the clients from pointing to the UNIX DNS
> and
> now point to the Windows 2003 DNS server will the clients be able to
> dynamically register their records on the Windows 2003 DNS server?
>
> We want to get rid of the UNIX Bind DNS server and have the Windows 2003
> DNS
> service the clients now.
>
> Thanks,
> Chuck


Actually BIND 8.2.3 and newer supports dynamic registration. However, it is
easier and more secure to use Windows DNS. Reason is twofold, AD integrated
zones are securely stored in the actual AD database (not as a text file),
and Secure Updates settings in Windows DNS uses Kerberos. BIND doesn't
support these features.

The rules of engagement for registration is as follows:

1. AD's DNS name can't be a single label name
2. The AD DNS name MUST match the name of the zone in DNS
3. Dynamic Updates must be allowed in the zone properties
4. The Primary DNS Suffix MUST match the zone name and the AD DNS name
5. You must ONLY use the DNS servers that host the zone.

If the machines are using something else other than the DNS servers you want
to register into, such as an ISP's, an external DNS adddress, your router as
a DNS address, or any other DNS that does not have a copy of the AD zone, or
the Primary DNS Suffix of the machine is not set to the zone name,
registration will not work.

If none of the citieria above are correct or true, expect problems.

--
Ace

This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.

Please reply back to the newsgroup or forum for collaboration benefit among
responding engineers, and to help others benefit from your resolution.

Ace Fekay, MCT, MCITP EA, MCTS Windows 2008 & Exchange 2007, MCSE & MCSA
2003/2000, MCSA Messaging 2003
Microsoft Certified Trainer

For urgent issues, please contact Microsoft PSS directly. Please check
http://support.microsoft.com for regional support phone numbers.

"Ace Fekay [MCT]" <> wrote in message
news:...
> "Charles" <> wrote in message
> news:BBCB19D9-FDBB-463A-8674-...
>> Hi:
>>
>> The UNIX Bind version is 9.x.x and does support dynamic updates. ...

I misread your post the first time around. I thought it said it does "not"
support updates. My respponse was based on that.

As far as dynamic updates, the rules still stand, so if they were already
updating in BIND, then I don't see a problem moving to Windows DNS.

Ace