Home | Education

Verifying the DNS configuration

By: endeavor03

Read More About Education

If you allow the Active Directory Installation Wizard to configure DNS for you, and your DNS solution supports dynamic update, the Netlogon service registers a set of default SRV resource records on the DNS server, as shown in Figure 2-16. 70-291 Exam SRV records are required for clients to find hosts that provide required services.

Set of default SRV records on Server1and Server2

To verify the DNS configuration, complete the following steps:

1 Click Start, point to Programs, point to Administrative Tools, and then click DNS.

2 In the DNS console tree, double-click the DNS server, double-click Forward

Lookup Zones, double-click the zone. Expand the _msdcs, _sites, _tcp, and _udp folders to view the default resource records.

Notice that the set of default SRV resource records is registered in multiple layers. The structure shown in Figure 2-16 is for two domain controllers; more complex environments will appear as such, with multiple records in the multiple layers. Records are provided for the global catalog, Kerberos, Kpasswd (Kerberos password change), and Lightweight Directory Access Protocol (LDAP) services.

The Netlogon service creates a log file that contains all the SRV resource records and places the log file in sytemroot System32\Config\Netlogon.dns. MCSE Certification An example Net-logon.dns file is shown in Figure 2-17. If your DNS solution does not support dynamic update, you must manually enter these records on your DNS server(s).
Stage Three—Creating an OU Plan

After analyzing your organization's requirements, to create an OU plan you must define an OU structure. There are three reasons for defining an OU:

•To delegate administration

•To hide objects

•To administer Group Policy

The primary reason for defining an OU is to delegate administration. Delegating administration is the assignment of IT management responsibility for a portion of the namespace, such as an OU, to an administrator, a user, or a group of administrators or users.

After you've determined the OU structure, you must place user accounts in the appropriate OUs. The end result of an OU plan is a diagram of OU structures for each domain and a list of users in each OU.

After analyzing your organization's requirements, the first step in creating a forest plan is to determine the number of Active Directory forests required. Because using more than one forest requires administrators to maintain multiple schemas, configuration containers, global catalogs, and trusts, and requires users to take complex steps to use the directory, you should strive to create only one forest for your organization. However, you might need to consider using multiple forests in the following situations:

•Network administration is separated into autonomous groups that do not trust each other.

•Business units are politically separated into autonomous groups.

•Business units must be maintained separately.

•There is a need to isolate the schema, configuration container, or global catalog.

•There is a need to limit the scope of the trust relationship between domains or domain trees.

Article Source: http://depositarticles.com/

you should strive to create only one forest for your organization. However, you might need to consider using 70-291 Exam

Please Rate this Article

 

Not yet Rated

Click the XML Icon Above to Receive Education Articles Via RSS!
Additional Articles From - Home | Education
Sign Up for a free account.
Our other websites
All about SEO
Beauty Tips Forum
Submit Articles
Member Login
Link Us
Submission Guidelines
Ezine Notifications
Article RSS Feeds
Sitemap
New Stuff
About Us
Developer
Good shopping portal
Link to Us
Contact Us
Privacy Policy
Terms of Service

counter easy hit

Powered by Article Dashboard