What domain do I use for Dynamic Update Credentials in a Domain Forest?

Question

question

rockwedj asked Mar 16, '22 rockwedj commented Mar 22, '22

What domain do I use for Dynamic Update Credentials in a Domain Forest?

I have a forest domain that contains the root domain and 3 sub domains. They are all trusted but I have had issues with DNS records reverting back from previous DHCP leases. I added domain user account for the dynamic update credentials which seemed to fix my problem going in between DHCP scopes in the first domain. The issue is when I visit domain 2 or 3 and then come back to domain 1, the DNS record seems to be unable to update from DHCP.

Does the dynamic update credentials have to be a user from the root domain in a domain forest?

windows-dhcp-dns

5 |1600 characters needed characters left characters exceeded

Attachments: Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Answer 1 · 2022-03-22T16:52:09.407Z

LimitlessTechnology-2700 answered Mar 22, '22 rockwedj commented Mar 22, '22

Hi @rockwedj

Your problem maybe related to the functional levels of your domains in the Forest. This article could shed some light:

https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/active-directory-functional-levels

--If the reply is helpful, please Upvote and Accept as answer--

· 1

5 |1600 characters needed characters left characters exceeded

Attachments: Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

rockwedj · Mar 22 at 05:51 PM

The forest and all domain levels are at 2016. I ended up using a root domain domain user account and used that for the dynamic update credentials through out the other domains. So far that has fixed the issue with the exceptions for some DNS records that are still owned by the DC.

0 ·

question