question

DayrakA avatar image
0 Votes"
DayrakA asked CandyLuo-MSFT commented

DNS does not join to Domain

I have set up a lab.
Not being able to join DNS to domain

A domain controller: ttf-dc Static IP:10.0.0.7
A DNS and DHCP: ttf-server1 Static IP:10.0.0.8
Domain: TTF.com

ttf-Server1:
nslookup _ldap._tcp.dc.msdcs.ttf.com
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 10.0.0.8

*** UnKnown can't find _ldap._tcp.dc.msdcs.ttf.com: Non-existent domain

dcdiag of ttf-server1:
The following error occurred when DNS was queried for the service location (SRV) resource record used to locate an Active Directory Domain Controller (AD DC) for domain "TTF.com":

The error was: "DNS name does not exist."
(error code 0x0000232B RCODE_NAME_ERROR)

The query was for the SRV record for _ldap._tcp.dc._msdcs.TTF.com

Common causes of this error include the following:

  • The DNS SRV records required to locate a AD DC for the domain are not registered in DNS. These records are registered with a DNS server automatically when a AD DC is added to a domain. They are updated by the AD DC at set intervals. This computer is configured to use DNS servers with the following IP addresses:

10.0.0.8

  • One or more of the following zones do not include delegation to its child zone:

TTF.com
com
. (the root zone)

TTF-Server1 ipconfig /all
Windows IP Configuration

Host Name . . . . . . . . . . . . : TTF-SERVER1
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Ethernet 2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Hyper-V Network Adapter #2
Physical Address. . . . . . . . . : 00-15-5D-00-05-04
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::9574:e3f6:4331:7222%12(Preferred)
IPv4 Address. . . . . . . . . . . : 10.0.0.8(Preferred)
Subnet Mask . . . . . . . . . . . : 255.0.0.0
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 83891549
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-23-47-79-F8-00-15-5D-0A-4E-05
DNS Servers . . . . . . . . . . . : 10.0.0.8
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{B0459C92-EE74-42BB-BAC7-026B9D335CB3}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

TTF-DC ipconfig /all
Windows IP Configuration

Host Name . . . . . . . . . . . . : ttf-dc
Primary Dns Suffix . . . . . . . : TTF.com
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : TTF.com

Ethernet adapter Ethernet 2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Hyper-V Network Adapter #2
Physical Address. . . . . . . . . : 00-15-5D-00-05-03
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::ec49:ca16:6a97:6d5%6(Preferred)
IPv4 Address. . . . . . . . . . . : 10.0.0.7(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 83891549
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-23-47-76-02-00-15-5D-0A-4E-04
DNS Servers . . . . . . . . . . . : 10.0.0.8
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{25C0C1C2-1BEC-42A5-9952-3EF950E723B2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes


TTF-Server1:
Note: This information is intended for a network administrator. If you are not your network's administrator, notify the administrator that you received this information, which has been recorded in the file C:\Windows\debug\dcdiag.txt.

The following error occurred when DNS was queried for the service location (SRV) resource record used to locate an Active Directory Domain Controller (AD DC) for domain "TTF.com":

The error was: "DNS name does not exist."
(error code 0x0000232B RCODE_NAME_ERROR)

The query was for the SRV record for _ldap._tcp.dc._msdcs.TTF.com

Common causes of this error include the following:

  • The DNS SRV records required to locate a AD DC for the domain are not registered in DNS. These records are registered with a DNS server automatically when a AD DC is added to a domain. They are updated by the AD DC at set intervals. This computer is configured to use DNS servers with the following IP addresses:

10.0.0.8

  • One or more of the following zones do not include delegation to its child zone:

TTF.com
com
. (the root zone)

windows-dhcp-dns
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Just checking in to see if the information provided was helpful.
Please let us know if you would like further assistance.

0 Votes 0 ·
CandyLuo-MSFT avatar image
0 Votes"
CandyLuo-MSFT answered CandyLuo-MSFT edited

Hi,

Based on my understanding, you setup AD role without DNS on your ttf-dc server. Then setup DNS service role and point its DNS setting to itself on ttf-server1. Is that right? Please feel free to let know if I have anything misunderstanding.

The recommend configuration is that domain controller also acts as a DNS server. Then you should configure DC / DNS server points to its own IP address.

For your reference:

Best Practices for DNS Configuration in an Active Directory Domain

Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.

Best Regards,
Candy



If the Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.




5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DayrakA avatar image
0 Votes"
DayrakA answered CandyLuo-MSFT commented

Hi,

thank you. that was very helpful.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

You are welcome. Have a nice day! :)

0 Votes 0 ·