Integrating DNS Zones into Active Directory





Integrating DNS Zones into Active Directory

When a zone is integrated into the Directory, the ASCII zone file is abandoned and Directory objects are created for each resource record. You must run DNS on a domain controller to get access to the Directory Integrated zone. You can only integrate a primary zone. When you meet the conditions for an integrating zone and are ready to migrate a primary zone to an Active Directory Integrated zone, do as directed in Procedure 5.14.

Procedure 5.14 Integrating a Primary Zone into Active Directory

  1. Open the DNS console.

  2. Right-click the zone that you want to integrate into the directory and select PROPERTIES from the flyout menu. The Properties window opens.

  3. At the General tab, adjacent to the Type entry, click Change. The Change Zone Type window opens (see Figure).

    Figure. Change Zone Type window showing selection for Active Directory Integrated zone.

    graphics/05fig14.gif

  4. Select the Store The Zone In Active Directory option. Click OK to make the change. A confirmation window appears.

  5. Click OK to confirm and return to the Properties window. The Type now shows Active Directory Integrated.

  6. Click OK to save the change, close the window, and return to the DNS console.

Verify that the zone entries were transferred to the Directory by following Procedure 5.15.

Procedure 5.15 Verifying Resource Record Integration

  1. Open the AD Users and Computers console via START | PROGRAMS | ADMINISTRATIVE TOOLS | ACTIVE DIRECTORY USERS AND COMPUTERS.

  2. From the CONSOLE menu, select VIEW | ADVANCED VIEW. This exposes the System folder, among other items.

  3. Expand the tree to System | MicrosoftDNS. The zone file displays as a folder containing dnsNode objects. Each of these objects represents a resource record. Figure shows an example.

    Figure. AD Users and Computers console showing contents of company.com zone under MicrosoftDNS container.

    graphics/05fig15.jpg

The dnsNode objects are not manageable as resource records from the AD Users and Computers console. DNS zone management is still done from the DNS console or by using the DNSCMD utility.


     Python   SQL   Java   php   Perl 
     game development   web development   internet   *nix   graphics   hardware 
     telecommunications   C++ 
     Flash   Active Directory   Windows