deny dynamic DNS

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

Is there a way to deny a specific device from dynaically registering in DNS.
We have dhcp registering machines on behalf of the client but a VPN server we
don't manage is registering in DNS also. Can we stop that regisration in DNS
without touching the RAS box ? Is a windows 2003 ras box.
 
techman said:
Is there a way to deny a specific device from dynaically registering in DNS.
We have dhcp registering machines on behalf of the client but a VPN server we
don't manage is registering in DNS also. Can we stop that regisration in DNS
without touching the RAS box ? Is a windows 2003 ras box.
Click to expand...

If you implement "secure dynamic updates only" you can probably
arrange this -- perhaps trivially.

"Secure dynamic updates only" require that you use a DC as an
AD Integrated primary.

This will prevent all non-domain/forest machines from registering
since authentication is required for that (technically it defeats it
for all domains machines not trusted by the DC-DNS server domain,
and for for all non-domain machines.)

If the VPN server is actually a Windows VPN server IN the domain
you will have to work harder -- perhaps putting in a dummy record
OR a "proper record" for the device in question and using a specific
account (perhaps one of the AD editors or a program to do this.)
 
In
techman said:
Is there a way to deny a specific device from dynaically registering
in DNS. We have dhcp registering machines on behalf of the client but
a VPN server we don't manage is registering in DNS also. Can we stop
that regisration in DNS without touching the RAS box ? Is a windows
2003 ras box.
Click to expand...

One way is to use a 3rd party tool, such as QIP or MetaIP.

--
Regards,
Ace

Please direct all replies ONLY to the Microsoft public newsgroups
so all can benefit.

This posting is provided "AS-IS" with no warranties or guarantees
and confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services

Security Is Like An Onion, It Has Layers
HAM AND EGGS: A day's work for a chicken;
A lifetime commitment for a pig.
 
Back
Top