DNS and AD (2003)

[imscoop22]

I am preparing to setup a new, fresh 2003 AD domain. External DNS
namespace is hosted and I am planning to use something like
mycompany.local for the internal namespace.

In setting up the domaim controller, I've heard from various people
that it is best to install DNS before running dcpromo...thus not
letting the wizard install DNS for you. I don't understand why it is
better to do it this way and can't find any posts that really help me
understand this.

Is this correct? If so, why?

 

[Guest]

I've never encountered any issues with allowing DNS to be installed during
dcpromo.

 

[Danny Sanders]

Never heard that. Never done that. Never had problems letting the wizard
install DNS either.

hth
DDS W 2k MVP MCSE

 

[Guest]

ive done it many times both ways - never a problem either of the ways

 

[Jimmy Andersson [MVP]]

In Windows Server 2003 the automatic DNS installation during dcpromo is
improved. I personally let the wizard do it and I haven't had any problems.

Regards,
/Jimmy

 

[imscoop22]

Thank you all for the feedback. I have the AD domain up and running
squeaky clean. One more area of confusion...

I have two DC's and am assuming that it would be a good idea to run DNS
on the second as well as an alternate. What is the best way to
configure the forward and reverse zones on the 2nd DC? i.e. should they
be primary or secondary?

Also, for the 2nd DC (once the DNS zones are configured on it) how
should the the Preferred/Alternate DNS servers be specified on it?
i.e. it was configured to point to the 1st DC prior to DCPROMO, once it
is running DNS itself, should it point to itself as the preferred and
the 1st DC as the alternate?

 

[Jimmy Andersson [MVP]]

Configure AD Integrated Zones, right-click the zone and choose properties
and select AD Integrated. This way the DNS zones will follow normal AD
replication, and when you install the DNS service on the second DC it will
"automagically" get the zones.
Point each DC to itself (DNS) and the other DC as secondary.

Regards,
/Jimmy

 

[imscoop22]

Thanks again. One more question. I found another post from someone
who seemed to prefer pointing the DC's to each other as the primary and
themselves as the alternate. Are there good reasons for doing/not
doing this? Also, in a single domain environment w/ 2 DC's, it's best
for both to be a GC server, right? and...in a single domain
environment, why are there distinct options for raising the domain
functional level and raising the forest functional level...why aren't
they "greyed" out after doing so?

Sorry, I know, more than one question...