Active Directory Zone Replication
**In this Video: **
- Discuss the benefits of storing Zones in Active Directory
- Take a closer look at the Active Directory Zone Replication Scope
- Demonstrate Replication in a Domain, Forest Environment
- Use DNS Manager and ADSI edit to view Domain and Forest Zone Data
- Demonstrate how to remove Zone Data from Active Directory.
Prerequisites: You must have access to or have installed in your lab the following:
- Windows 2016 server with DNS and Active Directory installed and the server promoted to a domain controller.
- Forward and Reverse lookup zone creation completed.
Adequate permissions will be needed.
- To configure a DNS server that is not running as a domain controller, you must be a member of the Administrators group for that computer.
- To configure a DNS server that is running on a domain controller, you must be a member of the DNS Administrators, Domain Administrators, or Enterprise Administrators group
The Benefits of Storing Zone Data in Active Directory
- AD-integrated zones can only be configured on domain controllers.
- Domain controllers configured as a DNS server in a domain is the authoritative server for that domain. So, DNS records can be updated on any of these servers and the changes will be automatically replicated.
- Active Directory can compress replication data between sites and replicates data securely, hence DNS replication also becomes fast, secure and efficient. This works even over slow links.
- Redundancy \- Because AD-integrated zones are replicated to either all Domain controllers in the Domain or all Domain controllers in the forest this provide redundancy thus, there’s no single point of failure in the DNS design.
- Security \- If secure dynamic update is enabled, only authorized clients can update their records in DNS zone.
**In order to understand how replication works, we must understand some things about the structure of…
No comments yet. Add the first comment to start the discussion.