Share: Home
How Do I enable Windows-based clients to perform dynamic updates to single-label DNS zones - Syed Khairuddin

Syed Khairuddin

How Do I enable Windows-based clients to perform dynamic updates to single-label DNS zones

As I have already mentioned here in my earlier post http://www.virmansec.com/blogs/skhairuddin/archive/2010/07/26/what-are-single-label-domain-names-or-sld.aspx  that Windows Server 2003-based domain members, Windows XP-based domain members, and Windows 2000-based domain members do not perform dynamic updates to single-label DNS zones.

Then How do Enable them for Dynamic Updates ?? For Windows 2003 Server please follow the instructions given below.

Normal 0 false false false MicrosoftInternetExplorer4

  1. Click Start, click Run, type regedit, and then click OK.
  2. Locate and then click the following subkey:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters

  1. In the details pane, locate the AllowSingleLabelDnsDomain entry. If the AllowSingleLabelDnsDomain entry does not exist, follow these steps:

a.    On the Edit menu, point to New, and then click DWORD Value.

b.    Type AllowSingleLabelDnsDomain as the entry name, and then press ENTER.

  1. Double-click the AllowSingleLabelDnsDomain entry.
  2. In the Value data box, type 1, and then click OK.
  3. Exit Registry Editor.

Normal 0 false false false MicrosoftInternetExplorer4

Windows XP and 2000 Clients.

 Use Group Policy to enable the Update Top Level Domain Zones policy and the Location of the DCs hosting a domain with single label DNS name policy as specified in the following table under the folder location on the root domain container in Users and Computers, or on all organizational units (OUs) that host computer accounts for member computers, and for domain controllers in the domain.

 


Policy

Folder location

Update Top Level Domain Zones

Computer Configuration\Administrative Templates\Network\DNS Client

Location of the DCs hosting a domain with single label DNS name

Computer Configuration\Administrative Templates\System\Net Logon\DC Locator DNS Records

 

Note These policies are supported only on Windows Server 2003-based computers and on Windows XP-based computers.

To enable these policies, follow these steps on the root domain container:

  1. Click Start, click Run, type gpedit.msc, and then click OK.
  2. Under Local Computer Policy, expand Computer Configuration.
  3. Expand Administrative Templates.
  4. Enable the Update Top Level Domain Zones policy. To do this, follow these steps:

a.       Expand Network.

b.      Click DNS Client.

c.       In the details pane, double-click Update Top Level Domain Zones.

d.      Click Enabled.

e.       Click Apply, and then click OK.

  1. Enable the Location of the DCs hosting a domain with single label DNS name policy. To do this, follow these steps:

 .        Expand System.

a.       Expand Net Logon.

b.      Click DC Locator DNS Records.

c.       In the details pane, double-click Location of the DCs hosting a domain with single label DNS name.

d.      Click Enabled.

e.       Click Apply, and then click OK.

  1. Exit Group Policy.

 

 

 

Posted: 07-26-2010 1:14 PM by skhairudin | with no comments