MS Active Directory using BIND DDNS
Simpson, John R
john_simpson at reyrey.com
Tue Aug 6 20:17:21 UTC 2002
We've got several customer and lab Windows 2000 AD systems integrated with
our BIND servers and it works quite well.
We're using the model in Cricket's DNS & BIND, 4th edition. The site's DHCP
server is authorized to make DDNS updates for client devices, and the AD
domain controller is authorized to make DDNS updates for the Microsoft AD
subdomains (_tcp, _udp, _sites, _msdcs). Each AD subdomain is a separate
zone. Explicit delegation is required, or AD will try to update example.com
instead of _msdcs.customerid.example.com, etc. We've had this setup working
since BIND 8.2.2 and are currently on 9.2.1, with several upgrades along the
way. No known problems with any version.
The Microsoft consultant working with our developers hadn't encountered
BIND/AD integration before, but he was satisfied when we showed him our
setup and the contents of our zone files. We've tested some fairly complex
AD server replacements and migrations.
It's a bit of a pain to set up with all the extra zones and ACLs, but once
it's in place it's mostly hands off.
Regards,
John Simpson
-----Original Message-----
From: Cinense, Mark [mailto:macinen at sandia.gov]
Sent: Tuesday, August 06, 2002 2:51 PM
To: Bind-Users-Group (E-mail)
Subject: MS Active Directory using BIND DDNS
Greetings,
Our group just finished visiting with an MS consultant, that we are
paying top dollar for. I had asked him if he has worked with integrating an
Active Directory environment using a BIND DDNS. Well, his answer was no.
Is there anyone using a BIND DDNS server that is seperate, with a Microsoft
Active Directory, Domain Controller. Any pros and con experience input
highly welcomed.
thanks...
Mark Cinense
More information about the bind-users
mailing list