Online
5521 days on xHamster
37676M profile views
93473K subscribers
85243 comments left

Rodc dns not updating

こんにちは。Windows サポート チームの三浦です。 今回は RODC とのみ通信可能な状態でドメイン参加をすることについての情報を共有します。 ドメインに参加したいコンピューターが RODC のみと通信可能な状態では、普通にドメイン参加を試みても失敗します。この場合の対処は次の 2 つがあります。 (1) を使用するオフライン ドメイン参加Windows 7 以降のみ。 (2) スクリプトによるドメイン参加Windows Vista でも可能。ただし、コンピューターのパスワード キャッシュが必須です。 それぞれの詳細についてご案内します。 を使用するオフライン ドメイン参加の手順については、次のステップ バイ ステップ ガイドが詳しいです。 ステップ バイ ステップ ガイド - オフライン ドメイン参加 (Djoin.exe) 1. 書き込み可能なドメイン コントローラーと通信可能なコンピューターで /provision コマンドを実行します。2. Once you have properly configured a Primary and secondary DNS server and configured the Primary server to allow zone transfers, you can manually initiate a zone transfer. The image is of to RDP sessions to two different servers. You can see and entry for Test2 that is not in the secondary database. (You must be a local administrator on the server.) Type dnscmd nyc-dc1 /zonerefresh test.and press Enter.The servers are named NYC-DC2 (Primary DNS) and NYC-DC1 (Secondary DNS). Refreshing the DNS console on the secondary server confirms the transfer.When Active Directory replicates, the zone data transfers.For standard DNS deployments, the data is stored in a file.

Savill lists the correct command that I needed to run on the RODC to enlist itself into the replication scope for each application partition.

So we installed the DNS server role only to find out that the Domain DNSZones and Forest DNSZones application partitions would not replicate down to the RODC.

Looking at the DNS Event Log on the server, you would see event notification 4513 () stating that the DNS server detected that it was not enlisted in the replication scope of the directory partition.

So my next quest for knowledge was…How do I get the RODC to enlist itself?

Searching for information on enlisting servers brought me to John Savill’s FAQ article on DNS posted on the Windows IT Pro web site ( The results were the following: Enumerated directory partition list: Directory partition count = 2 Domain Dns Zones.Not-Enlisted Auto Domain Forest Dns Zones.Not-Enlisted Auto Forest So the answer was still obvious…How do I enlist it?

This site will contain posts about the every-day technology issues (Personal and Professional) I run into and how I or someone else has solved them.

Please or register to post comments
If spammers comment on your content, only you can see and manage such comments Delete all
AD & Dynamic DNS Updates Registration Rules of engagement. you can configure DHCP to update in lieu of the client updating into a Secure Only zone. 6. 
12-Sep-2018 06:10
Reply
Read Only Domain Controller not replicating after writable domain. the RODC is no longer replicating with. I suspect that the problem is caused by DNS. 
12-Sep-2018 06:14
Reply
Install a Windows Server 2012 Active Directory Read-Only Domain Controller RODC. include running as a DNS Server. and updating the domain do not occur. 
12-Sep-2018 06:17
Reply

Rodc dns not updating introduction

Rodc dns not updating

Recent posts

12-Sep-2018 16:11
12-Sep-2018 22:27
13-Sep-2018 14:44