_msdcs zone

[sagy]

Hi,
I have 1 domain with 8 remote sites and 1 DC in each site.
I read that it is best practice to delegate the _msdcs zone (the forest-wide
locator resource records) out of the main AD zone and add secondary copies
of the zone to every DNS server in the forest.

Is it applicable to my configuration? Doesn't the AD integrated zone
replicates itself anyway, including the _msdcs zone, to all DC in all sites?

Thank you.


--

 

[Santhosh Sivarajan]

If you have a _msdcs.domain.com separate zone (not sub zone) and the
replication is forest wide, it will automatically replicate zone information
to all "Domains" inside the same forest

In your case, you have one Forest and one Domain. So it will replicate all
active directory enabled zones(including _msdcs) to all DCs. You don't
have to change any replication scope.

 

[sagy]

Thank you.


--

If you have a _msdcs.domain.com separate zone (not sub zone) and the
replication is forest wide, it will automatically replicate zone information
to all "Domains" inside the same forest

In your case, you have one Forest and one Domain. So it will replicate all
active directory enabled zones(including _msdcs) to all DCs. You don't
have to change any replication scope.