DNS and QIP

  • Thread starter Thread starter Adrian Marsh
  • Start date Start date
A

Adrian Marsh

All,

Has anyone had any experience with Active Directory (2000 AS) and
Lucents VitalQIP system?

My IT group want me to merge my AD environment in with the corporate
standard for DNS. To do this i'll need to move the DC over to use the
corporate VitalQIP system. I'm being given some access to the system by
the QIP admin team, but I'm unsure about the SRV records in the
existing Microsoft DNS server, and how they should be replicated in QIP.
(NB: Plan is to drop the existing DNS server once I've moved across).

2nd part: At the moment I only have one DC, but I plan to expand this to
two - how will that impact the SRV records?

A.
 
In
Adrian Marsh said:
All,

Has anyone had any experience with Active Directory (2000 AS) and
Lucents VitalQIP system?

My IT group want me to merge my AD environment in with the corporate
standard for DNS. To do this i'll need to move the DC over to use the
corporate VitalQIP system. I'm being given some access to the system
by the QIP admin team, but I'm unsure about the SRV records in the
existing Microsoft DNS server, and how they should be replicated in
QIP. (NB: Plan is to drop the existing DNS server once I've moved
across).

2nd part: At the moment I only have one DC, but I plan to expand this
to two - how will that impact the SRV records?

A.
Click to expand...

As long as QIP supports SRV records (a MUST) and dynamic registration (a
recommendation or you'll be creating them manually), then you should be ok.
QIP will host the zone, which the SRVs will be under. But QIP as far as I
know, does not support AD Integrated zones, so you lose that feature and
secure updates, but I believe that QIP has it's own mechanisms.

Have you talked to a QIP rep?

--
Regards,
Ace

Please direct all replies ONLY to the Microsoft public newsgroups
so all can benefit.

This posting is provided "AS-IS" with no warranties or guarantees
and confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services

Security Is Like An Onion, It Has Layers
HAM AND EGGS: A day's work for a chicken;
A lifetime commitment for a pig.
 
I'm talking with the local admin, who doesn't have much experience of
AD, so its a learning thing for him too, from that point of view.

The QIP database will be updated by QIP DHCP, which in turn should also
update QIP DNS. So that should be "dynamic registration" - but it won't
talk to the AD server itself, so one question - when a client is
normally added to the domain (via MS DNS/DHCP server), are there any SRV
records added about that client, or do the SRV records only apply to the
domain itself and the DCs ?
 
In
Adrian Marsh said:
I'm talking with the local admin, who doesn't have much experience of
AD, so its a learning thing for him too, from that point of view.

The QIP database will be updated by QIP DHCP, which in turn should
also update QIP DNS. So that should be "dynamic registration" - but
it won't talk to the AD server itself, so one question - when a
client is normally added to the domain (via MS DNS/DHCP server), are
there any SRV records added about that client, or do the SRV records
only apply to the domain itself and the DCs ?
Click to expand...


The SRVs are only referencing service on your DCs, not clients. So as long
as QIP can support this function, and the clients are only using the
internal QIP DNS servers, then the clients can function properly, including
joining machines to the domain. Also, it's not that DNS server 'talks' to
anyone, it just responds to queries. It will also respond to update requests
from DCs and clients or even DHCP itself, if configured to do so. So the DCs
will send reg requests to DNS and DNS will update them (in a correctly
cofigured and ideal scenario). So when a client or a DC needs to find
something in the domain, it queries DNS for the SRV records in that domain
or other domains.

Does that help?

So if QIP supports this function, then it will work. I can't see it not
supporting this function.

--
Regards,
Ace

Please direct all replies ONLY to the Microsoft public newsgroups
so all can benefit.

This posting is provided "AS-IS" with no warranties or guarantees
and confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft Windows MVP - Windows Server - Directory Services

Security Is Like An Onion, It Has Layers
HAM AND EGGS: A day's work for a chicken;
A lifetime commitment for a pig.
 
Thanks ace.
In



The SRVs are only referencing service on your DCs, not clients. So as long
as QIP can support this function, and the clients are only using the
internal QIP DNS servers, then the clients can function properly, including
joining machines to the domain. Also, it's not that DNS server 'talks' to
anyone, it just responds to queries. It will also respond to update requests
from DCs and clients or even DHCP itself, if configured to do so. So the DCs
will send reg requests to DNS and DNS will update them (in a correctly
cofigured and ideal scenario). So when a client or a DC needs to find
something in the domain, it queries DNS for the SRV records in that domain
or other domains.

Does that help?

So if QIP supports this function, then it will work. I can't see it not
supporting this function.
Click to expand...
 
Adrian Marsh said:
All,

Has anyone had any experience with Active Directory (2000 AS) and
Lucents VitalQIP system?

My IT group want me to merge my AD environment in with the corporate
standard for DNS. To do this i'll need to move the DC over to use the
corporate VitalQIP system. I'm being given some access to the system by
the QIP admin team, but I'm unsure about the SRV records in the
existing Microsoft DNS server, and how they should be replicated in QIP.
(NB: Plan is to drop the existing DNS server once I've moved across).

2nd part: At the moment I only have one DC, but I plan to expand this to
two - how will that impact the SRV records?

A.
Click to expand...

Adrian,

I've had a lot of experience with VitalQIP and large scale AD
environments and the transition from MS DNS to VitalQIP is usually
quite painless.

Assuming your running V6.0 or higher of VitalQIP (For AD environments
this is key), you can use a handy CLI utility to copy the SRV, CNAME
and A records from the MS DNS server into the VitalQIP DB - This CLI
is called qip-syncexternal and is designed to load AD DNS entries into
the QIP Database. Once you have done this all of the SRV records will
be in QIP and you can then Generate the DNS zone to the VitalQIP DNS
Servers.

You will also need to ensure that the AD DC is in the Zone ACL
(Assuming that you are using ACL's to restrict Dynamic updates) so it
can re-register its SRV records. Adding another DC will roughly
double the number of SRV records.

Hope this helps.

Graham
 
Graham/Peter/Ace,

Thanks v. much for the info. I'll pass some of this onto my IT guys to
see what we can do...

Adrian
 
In
Adrian Marsh said:
Graham/Peter/Ace,

Thanks v. much for the info. I'll pass some of this onto my IT guys to
see what we can do...

Adrian
Click to expand...

Good luck with everything!
:-)

Ace
 
Back
Top