Sign up to access this lesson
Click here to sign up and get access to this lesson!

Saving Progress...
In this lecture, we will demonstrate the use of DNS delegation in a Windows 2016 server environment.
You have just been hired by a company in the U.S. to evaluate and fix the network issues of a multinational marketing company called Global Marketing.
Steve the CEO has requested that you present your solutions to management.

You make a short list of problems that you have discovered:
- All the Domains are hosted on one server – SVR-US-DNS1.
- All the records from all the sites in the organization are stored on one server, SVRUS-DNS1
- Network bandwidth is extremely limited due to all the queries coming to one server, which continually crashes.
- Germany, (DE) including two cities was will be coming on line shortly. The original plan was to add DE to the current domain DNS-ZONE.COM
Considering that the folks in management are not technically minded you plan to present your solutions in terms that they will understand.
- Just as Steve the CEO of the company has delegated control of the company’s five different locations to five different people, we are proposing that we will split up or delegate administrative control to servers strategically placed within each location of the company.
- In this slide if a request for information comes in to the US site for the site in Germany, the DNS server in the US would pass that request onto the DNS server at the DE site.

With this strategy, we will accomplish the following:
- Delegate administrative authority. Instead of the IT group in the US handling all the requests for Germany. The IT group in Germany will take administrative control of their own namespace.
- Improved Performance – Instead of one server handling all the DNS requests, any traffic for the DE site coming into the US server will be pointed to the DE server.
- Expand the namespace – As it is advantageous to expand the business into Germany. DNS allows for expansion of the namespace as well.
Management requests that you start work immediately. The CEO asks that you start with the DE site.
- You ask the DE IT department to setup a new server called SVR-DE-DNS1
- Remotely you install DNS then Active Directory, and promote the server to a Domain Controller and create a new child domain called DE.DNS-ZONE.COM
- From the DE server (SVR-DE-DNS1) open Server Manager, Tools, then open DNS Manager.
Let’s take a look at the current status of DNS after the server has been promoted to a domain controller.

The important points are:
- The forward lookup zone DE.DNS-ZONE.COM has been created.
- The start of authority for this zone is the server (SVR-DE-DNS1.DE) notice the zone name has been appended to the server name. The start of authority stores settings about how often the zone should be replicated.
- The name server record – Designates which server is authoritative for the zone or which server has an up to date copy of the zone data. In this case the server (SVRDE-DNS1.DE) is authoritative for the zone DE.DNS-ZONE.COM
- A-host record – In this instance, the A-host record maps the server svr-de-dns1 to the IP address 192.168.0.11
Now lets switch over to the US server and create our delegation.
![]() |
From the US server (SVR-US-DNS1) open Server Manager, Tools, then open DNS Manager.
Let’s take a look at the current status of DNS. RT click on the zone – DNS-ZONE.COM
Select New Delegation

Type in the name of the domain that you want to delegate. In other words, what domain will the US server (SVR-US-DNS1) pass all the requests (queries) too. In this case the domain will be DE. The wizard automatically appends the FQDN. Click next.
Sign up to access the rest of this lesson
You must either log in or sign up to access this lesson.
CURRICULUM
Course Introduction • 10min
0 / 2 lessons complete
Instructor and Course Introduction
Video | 7 min
What's New in Windows Server 2016 DNS
Free lesson
Video | 3 min
DNS Basics • 56min
0 / 8 lessons complete
What is DNS
Video | 3 min
Installing the DNS Windows Server Role
Video | 6 min
Building DNS Server Quiz
Quiz | 10 Questions
The Hosts File
Video | 4 min
DNS Console Overview
Video | 7 min
Recursive and Iterative Queries
Video | 8 min
DNS Basics LAB
Video | 10 min
DNS Basics Quiz
Quiz | 8 Questions
DNS Resource Records • 45min
0 / 5 lessons complete
DNS Resource Record Types
Video | 3 min
Creating the mytestzone Forward Lookup Zone
Text | 2 min
Creating DNS Resource Records
Video | 4 min
Creating DNS Resource Records Lab
Lab | 30 min
DNS Resource Records Quiz
Quiz | 7 Questions
DNS Zones • 4hr 11min
0 / 12 lessons complete
DNS Zones
Video | 4 min
Creating a Forward and Reverse Lookup Zone
Video | 5 min
Creating a Secondary Zones
Video | 9 min
Stub Zone Creation
Video | 11 min
Active Directory Zone Replication
Video | 12 min
Implementing DNS Forwarding
Video | 8 min
Implementing Conditional DNS Forwarding
Video | 7 min
Forward and Reverse Zone Creation Lab
Lab | 60 min
Creating a Secondary Zone Lab
Lab | 30 min
Conditional Forwarding Lab
Lab | 60 min
Creating a Stub Zone Lab
Lab | 30 min
DNS Zones Quiz
Quiz | 15 Questions
DNS Delegation • 50min
0 / 4 lessons complete
Domain Name System and DNS Delegation
Video | 7 min
Windows 2016 Server and DNS Zone Delegation
Video | 8 min
DNS Delegation Lab
Lab | 30 min
QUIZ - Domain Name System and DNS Delegation
Quiz | 5 Questions
DNS Security Techniques • 36min
0 / 5 lessons complete
DNS Security Techniques Overview
Video | 9 min
Configuring DNS Cache Locking
Video | 5 min
Configuring DNS Socket Pools
Video | 6 min
Configuring Response Rate Limiting
Video | 8 min
DNS Security Techniques Quiz
Quiz | 8 Questions
Advanced DNS Topics • 22min
0 / 5 lessons complete
Overview of Advanced Topics
Video | 1 min
Enabling Round Robin and Netmask Ordering
Video | 5 min
Configuring Recursion
Video | 4 min
IPV4 and IPV6 Root HInts
Video | 6 min
Advanced DNS Topics Quiz
Quiz | 6 Questions
DNS Security (DNSSEC) • 1hr 16min
0 / 6 lessons complete
Windows DNS Security Overview
Video | 7 min
Symmetric vs Asymmetric Encryption
Video | 5 min
Installing DNSSEC on Windows 2016 Server
Video | 12 min
DNSSEC Client Install
Video | 7 min
DNSSEC (DNS Security Lab)
Lab | 30 min
DNSSEC Quiz
Quiz | 15 Questions
DNS Policies • 55min
0 / 6 lessons complete
DNS Policies Background Information
Video | 8 min
Configuring DNS Filtering
Video | 7 min
Configuring Split Brain DNS in an Active Directory Environment
Video | 12 min
Configuring DNS Selective Recursion Policy
Video | 7 min
Configuring a Traffic Management Policy
Video | 11 min
DNS Policies Quiz
Quiz | 10 Questions
PowerShell for DNS • 1hr 27min
0 / 6 lessons complete
PowerShell for DNS Part 1
Video | 2 min
PowerShell for DNS Part 2
Video | 5 min
PowerShell for DNS Part 3
Video | 10 min
PowerShell for DNS Part 4
Video | 5 min
PowerShell for DNS LAB
Lab | 60 min
Powershell for DNS Quiz
Quiz | 5 Questions
Troubleshooting DNS Issues - Troubleshooting Tools • 1hr 39min
0 / 8 lessons complete
Troubleshooting Tools Every IT Pro Must Know
Video | 9 min
The Events Viewer Overview
Video | 6 min
Subscriptions
Video | 9 min
Monitoring and Debug Logging
Video | 9 min
Trouble-Shooting DNS Client Issues
Video | 4 min
Troubleshooting Subscriptions Lab
Lab | 30 min
DNS Troubleshooting Lab
Lab | 30 min
DNS Troubleshooting Quiz
Quiz | 2 Questions