AD migration / DNS query

NavS 1 Reputation point
2021-09-14T10:10:46.63+00:00

Hi, we are planning an AD domain migration and i had a questions around client DNS registration.

We have so many networks across the country that we have decided it would make our life much easier if we could host the new domain on the same network/subnets as the old domain. The old and new domains will be joined by a two way trust. Now obviously i can only have one DHCP server on any given subnet to hand out IPs, gateways and DNS addresses etc, so we are opted for the new AD server to be the one that handles DHCP for both old and new domain clients, and we will hand out the new AD servers IP as the DNS server). We will setup conditional forwarders to handle the DNS requests back and forth from old and new domains and vice versa so that should work fine....correct me if i am wrong.

My question is that if a client still on the old domain tries to register itself in DNS (DNS server IP is the new AD server) will the fact that i have a 2 way trust allow the old clients A record to be populated in the old domains dns?

Thanks

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,908 questions
Windows DHCP
Windows DHCP
Windows: A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.DHCP: Dynamic Host Configuration Protocol (DHCP). A communications protocol that lets network administrators manage centrally and automate the assignment of Internet Protocol (IP) addresses in an organization's network.
1,023 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Devaraj G 2,091 Reputation points
    2021-09-14T11:51:38.527+00:00

    Hi,

    DNS updates on multi-domain with single DHCP is tricky. It will work but with certain limitations.
    When updating the host record, DHCP server searches for a DNS server which is authoritative for the zone matching the domain name of DHCP client.
    So if DHCP client is a member of new domain, DHCP server will look for a DNS server which is authoritative for the zone .

    Read the section: DHCP in a Multi-Domain AD Forest from this link for detailed tested approach
    https://social.technet.microsoft.com/wiki/contents/articles/51810.windows-server-integration-between-dns-and-dhcp.aspx

    I would recommend separating the subnets and dhcp server per domain to avoid any potentials issues.

    0 comments
  2. NavS 1 Reputation point
    2021-09-14T13:13:00.887+00:00

    HI

    Thanks for the response, i know the above is all true for child and parent domains, but does it also hold true for two domains held together by a 2 way trust?

    I am hoping that when a client in olddomain.com tries to register its own name against the newdomain.com AD server, the newdomain.com AD server sends it back to the correct DNS zone in olddomain.com and the record is registered there.

    We did think about new subnets for the new domain but we have several hundred subnets and if i can get away without doing that- quite a big expense - then i prefer it. However if there is a show stopper in this method then will have to reavaluate the whole project.

    0 comments