[129797] in North American Network Operators' Group
RE: Active Directory requires Microsoft DNS?
daemon@ATHENA.MIT.EDU (Matlock, Kenneth L)
Mon Sep 20 10:19:29 2010
Date: Mon, 20 Sep 2010 08:13:03 -0600
In-Reply-To: <AANLkTimaT0+OarrxwcFX_4Zy2Yag4Cv7VM=4Ww_KF1+_@mail.gmail.com>
From: "Matlock, Kenneth L" <MatlockK@exempla.org>
To: "Tom Mikelson" <tmikelson@gmail.com>,
<nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
Active directly is tied fairly closely to it's DNS.
For example, if a client needs to find a Domain Controller, it does a
DNS 'SRV' query for (I think, I'm doing this from memory)
'_LDAP._TCP.domain.com/org/net/whatever'. I assume other 'services' like
LDAP are 'advertised' (if you can call it that) via DNS as well.
You MAY be able to duplicate all the records in BIND, but expect random
things to not work, and have to do a bunch of research figuring out what
DNS query it's doing, and what the proper answer is.
Ken Matlock
Network Analyst
Exempla Healthcare
(303) 467-4671
matlockk@exempla.org
-----Original Message-----
From: Tom Mikelson [mailto:tmikelson@gmail.com]=20
Sent: Monday, September 20, 2010 8:05 AM
To: nanog@nanog.org
Subject: Active Directory requires Microsoft DNS?
Presently our organization utilizes BIND for DNS services, with the
Networking team administering. We are now being told by the Systems
team
that they will be responsible for DNS services and that it will be
changed
over to the Microsoft DNS service run on domain controllers. The reason
given is that the Active Directory implementation requires the Microsoft
DNS
service and dynamic DNS. Not being a Microsoft administrator I do not
know
the veracity of these claims. Anyone out there had any experiences with
a
situation like this? I am a bit leery of changing something that is
already
working.
