question

RicardoCarrera-3016 avatar image
0 Votes"
RicardoCarrera-3016 asked ·

O servidor DNS não está autorizado na zona

Olá a todos,

Sou novo aqui e gostaria de uma ajuda com esse erro no visualizador de eventos do meu AD-DS.

Obs:
Tenho 3 AD-DS sendo,
dois na matriz e um em uma filial.
Apenas 1 da matriz esta com todas as FISMOS.



Acesso meu DHCP e ele está funcionando,
O DNS está autorizado mas nos logs de eventos fica com esses erros.



Segue mensagem do LOGS:



Falha no registro PTR de endereço IPv4 [[192.168.0.132]] e FQDN MEUPC.COM com erro 9009 (O servidor DNS não está autorizado na zona.
).


  • System

    • Provider

      [ Name] Microsoft-Windows-DHCP-Server
      [ Guid] {6D64F02C-A125-4DAC-9A01-F0555B41CA84}


      EventID 20322


      Version 0


      Level 2


      Task 124


      Opcode 0


      Keywords 0x2000000000000000


    • TimeCreated

      [ SystemTime] 2020-01-22T19:15:30.333717300Z


      EventRecordID 413206


      Correlation


    • Execution

      [ ProcessID] 2720
      [ ThreadID] 4992


      Channel DhcpAdminEvents


      Computer MEUSERVIDOR.COM


    • Security

      [ UserID] S-1-5-20



  • EventData

    IP_Name [[192.168.0.132]]
    FQDNName MEUPC.COM
    Errorvalue 9009
    operation O servidor DNS não está autorizado na zona.






Alguém sabe como posso resolve-lo? Ou um caminho de como tentar entender oque está acontecendo?

Obrigado!

azure-active-directory
· 2
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Can you please refer to Troubleshooting DNS servers to check if you have any DNS issues, if this helps.


0 Votes 0 ·

hello, i'm following up on this issue, can you respond in regards to Sashar's comment? Thanks

0 Votes 0 ·

1 Answer

yagmoth555 avatar image
0 Votes"
yagmoth555 answered ·

Hi

From your error code you seem to have a problem with the DHCP server to be unable to update entry in the DNS's server.

Please check there:

On the DNS server

  • On the DNS zone, choose "dynamic updates">"Secure only" (recommended). Then add DHCP server to "DnsUpdateProxy" group in ADUC or create credential for the DHCP server (In case, I will both add DHCP server to the group and configure credential.)


  • On DHCP server, check "Always dynamically update DNS records", and "Discard A and PTR records when lease is deleted", enable "Disable dynamic updates for DNS PTR records" is not checked;


  • On DNS server, check if the relevant reverse lookup zone is create. For example ,1.0.168.192.in-addr.arpa.


  • On clients, check "Register this connection's addresses in DNS".


On the DHCP server

  • Open the IPV4 properties. Go to the Advanced tab. Click Edit and verify the credentials to register dynamic updates.

See there for where:

2521-dhcp-ipv4-properties-advanced-credentials.png





· Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.