ForestDNSZones have old DC entries
i have single-domain forest running @ 2008r2 domain , forest level, 5 dc's of 2012r2.
i noticed script failing depends on ping forestdnszones.mydomain.co.uk , tested - nslookup forestdnszones returns list of dc's, includes @ least 2 have been removed in recent past.
the dc's removed correctly demoted , dns removed them using server manager roles , features.
i carried out actions suggested in article http://social.technet.microsoft.com/forums/windowsserver/en-us/b77a7e5c-590e-4d23-a9cb-8c4c0f403baf/forestdnszones-and-domaindnszones-have-wrong-infrastructure-role-record?forum=winserverds to put correct entries in fsmoroleholder attribute both domain , forest dns zones.
however nslookup still returns list includes dc's not on network.
repadmin /replsummary clean.
what further cleanups might need do?
no sig sig
i've found after successful dcpromo demote operation references demoted domain controllers remain in dns zones.
referring article...
i delete references demoted or retired domain controllers in various dns zones.
please @ section 8 in particular:
" 8. go through dns fined-toothed comb delete references old
dc. you'll need delete records such such srv, host, ldapipddress, ,
gcipaddress. "
edit - @ name servers in dns zone properties.
my experience 2003/2008 "hidden" references old dc/dns servers may remain in w2k12(r2) well.
please mark helpful if find contribution useful or answer if answer question. encourage me - , others - take time out you.
Windows Server > Directory Services
Comments
Post a Comment