Clients do not update via Dynamic Update after changing admin acco

Discussion in 'DNS Server' started by jludwig, Apr 9, 2008.

  1. jludwig

    jludwig Guest

    Hello,

    For security reasons we renamed our administrator account and set the
    account called administrator to have just domain users rights.

    Shortly there after we are having issues auto-registering DNS names from
    client computers that have either changed VLAN's or new computers we have
    added on the domain. None of the clients DNS values are being populated into
    DNS. I have tried a variety of things, which I will list below along with
    some of my configuration info. If you need more information please let me
    know.

    1.) Ran ipconfig /registerdns on the client computer
    2.) Checked to make sure DHCP was configured correctly with the subnet in
    question. I.E. That the DNS Tab under scope options radio button: always
    dynamiclly update A and PTR records.
    3.) Flushed cache on DNS server.

    Interesting thing is if i sit at a computer and try to flushdns /
    registerdns it will eventually upate the record, sometimes it takes 20 min
    sometimes 1 hour. I need to have this update without someone going to every
    machine and doing this manual flush and registering of records.

    Somthing has for sure changed this was all working perfect before I changed
    the admin user name and rights around.

    Configuration Info -

    3 DC's in one AD domain/forest. Primary DC is the primary DNS server for all
    clients. All windows XP machines as clients.



    Regards,
     
    jludwig, Apr 9, 2008
    #1
    1. Advertisements

  2. Adjusting the administrator account as you have done should have no bearing
    on your system, unless the dhcp or dns service running is logging on as the
    domain administrator and that would be a really bad idea. When you do a
    registerdns dhcp is totally out of the picture, ddns is run from the dhcp
    service. When you do a register dns verify that the dns server you are
    querying is the one the client is updating and that you are not waiting on
    zone transfer/replication to take place before you see the update.





    ""
     
    Paul Bergson [MVP-DS], Apr 10, 2008
    #2
    1. Advertisements

  3. jludwig

    jludwig Guest

    I did a nslookup <enter> before I ran registerdns and it is querying my
    primary DNS server. All of my DNS servers 3 of them, are all in the same
    domain. I have let this sit overnight to make sure all the Zone updates are
    occuring. There are no DNS errors in my event log.
    --
    Jason Ludwig
    Findlay City Schools
    Findlay, Ohio


     
    jludwig, Apr 10, 2008
    #3
  4. If you remove a dns entry and then do an ipconfig /registerdns does it
    work? If so it sounds like the dns entries were manually entered and the
    flag to allow all (All would mean the host could update it) wasn't selected.



    ""
     
    Paul Bergson [MVP-DS], Apr 24, 2008
    #4
  5. jludwig

    jludwig Guest

    No they were not manually entered. Also flag's were set correctly. I did fix
    this issue myself........

    In response to your first message of :

    "Adjusting the administrator account as you have done should have no bearing
    on your system, unless the dhcp or dns service running is logging on as the
    domain administrator and that would be a really bad idea"

    This is EXACTLY what happened like I thought. When I made the change to the
    administrator account and removed all the rights, that is what broke my
    dynamic updates to DNS. The issue wasn't the services starting up as
    administrator but the acutal DHCP server settings.

    Go to DHCP -> Right click on the domain then properties -> Advanced Tab ->
    Then DNS dynamic updates registration credentials button. Here is where I
    had the old administrator credentials that I need to change to vaild
    credentials to allow DNS updates from client computers using DHCP.
    --
    Jason Ludwig
    Findlay City Schools
    Findlay, Ohio
     
    jludwig, Apr 24, 2008
    #5
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.