Doing DNS, Active Directory-style

by Jeff Symoens
Be the first to comment | I like it!
More »
on this topic
January 27, 2001, 12:53 PM —  ITworld.com — 

Active Directory (AD) is arguably the most crucial new feature in Windows 2000, so it's important to devise a plan that ensures a smooth rollout for it. One of the first steps in planning your AD deployment is to work out your domain name system (DNS) integration strategy. Successful DNS integration is a critical factor in AD deployment, because the directory relies on DNS as a location service. This means that DNS helps clients find Windows 2000 domain controllers and other AD-related services for a particular domain.

Since DNS integration is so vital, and since so many issues depend on choosing the right DNS integration strategy -- particularly when working with an existing Unix-based DNS environment -- I'll dedicate the next few columns to the topic.

This time around, I'll provide an overview of AD's DNS requirements and describe the three options for implementing an AD/DNS strategy. In future columns I'll cover a few deployment options and approaches that should help you plan your own AD/DNS integration strategy, whether you plan to deploy the Microsoft DNS service that ships with Windows 2000, or another DNS server, such as a Unix-based implementation.

What DNS brings to the party

If you've done any reading on the subject, you may already be familiar with AD's DNS requirements. For those of you who are just getting started, let me take a moment to cover them.

AD's primary DNS requirement is support for DNS service (SRV) resource records. The directory uses these to advertise the availability of services to AD-aware clients. From a DNS perspective, SRV records are used to map a particular service and its TCP/IP port number to a particular host that offers or advertises that service.

In addition to SRV records, support for dynamic DNS (DDNS), which allows for client self-registration of DNS records, is also required by AD in order to support dynamic registration of AD services. Although you could technically get by without DDNS, having to manually register AD's SRV records with DNS is enough of an inconvenience and provides enough room for error that DDNS is the only realistic solution. So you can consider DDNS a virtual requirement.

Let me elaborate on this point for a moment to help illustrate how AD uses DNS. In order for AD-aware clients to locate AD domain controllers and other AD-related services, each AD domain controller registers these services in DNS. Among the services registered are the TCP/IP ports for the LDAP and Kerberos services for a Windows 2000 domain controller. In addition, AD sites, domain controllers within each site, and AD Global Catalog servers are also registered in DNS. Sites are administrator-configurable constructs that define areas of high bandwidth for efficient authentication and directory replication.

Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world

I like it!
Post a comment
The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.
peer-to-peer

Esther Schindler
If the comments are ugly, the code is ugly

claird
SVG a graphics format for 21st century

pasmith
Take Chrome OS for a test spin

Sandra Henry-Stocker
Solaris Tip: Have Your Files Changed Since Installation?

sjvn
64-bits of protection?

jfruh
Android fragments vs. the iPhone monolith

mikelgan
What Gizmodo missed about the Pro WX Wireless USB disk drive

 

Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325

Join the conversation here

The Daily Tip

The Daily TipQuick, practical advice for IT pros. Made fresh daily.

Hot tips:

Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.

Newsletters

Subscribe to ITWORLD TODAY and receive the latest IT news and analysis.

I would like to receive offers via email from ITworld partners.
By clicking submit you agree to the terms and conditions outlined in ITworld's privacy policy.
view all newsletters »
Featured Sponsor
Case Study: AISO grows its "green" business

AISO founders envisioned a Web hosting company that was environmentally friendly. While the company employed energy-efficient innovations like solar panels, its infrastructure produced unacceptable power and cooling requirements. Find out how AISO leveraged AMD technology to overcome their challenge in this case study white paper.

Download this white paper »
Myth of the Million Dollar Database

In this whitepaper, Scalar explores the opportunity to change the landscape with respect to mission critical databases built around Oracle. Leveraging technologies such as Linux, high-end commodity processing power and Oracle RAC technology to architect, design, build and maintain database infrastructure that delivers maximum availability, reliability and performance at a fraction of traditional cost.

Download this white paper »
Success Story: Weather.com handles whatever nature serves up

On a typical day, weather.com, the Web site for The Weather Channel in Atlanta, serves up between 15 million and 20 million page views. But in September 2004, when back-to-back hurricanes ransacked Florida, the peak traffic on one day more than tripled: over 70 million page views by more than 7 million unique visitors. Read the full success story now.

Download this white paper »
Marketplace