Active Directory
A set of directory-based technologies included in Windows Server.
6,515 questions
Assistance Required: Internal DNS Configuration Post-Azure Migration
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 76%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJG%3C/text%3E%3C/svg%3E)
John GMB
0
Reputation points
Hi All,
We have successfully migrated all our servers to Azure and are now focusing on transitioning our internal domain DNS. While we continue to use our domain servers for Active Directory (rather than Azure AD), these servers have also been migrated to Azure. The final step is to demote and decommission the on-premise domain servers. However, these on-premise servers are currently serving as internal DNS servers for our domain.
We have enabled DNS services on the new Windows domain controllers in Azure, but DNS resolution is currently only occurring on one of the Azure servers. Both servers are operational, but failover does not occur when one goes down.
My questions are as follows:
- Are we configuring DNS correctly under this setup, or are we following an outdated approach?
- Should we consider alternative best practices for DNS management after migration?
- Why are the Azure DNS servers not failing over as expected? All on-premise clients have the two Azure server IPs configured for DNS, so they should be able to see and use both, as they did previously with the on-premise DNS servers.
For reference, we are connected from our on-premise environment to Azure via an ExpressRoute connection.
Thank you for your assistance.
Best regards, John
{count} votes
-
Luke Murray 11,081 Reputation points MVP2024-10-02T23:18:01.29+00:00 Need a bit more information here, this can be hard to troubleshoot, so the more information the better, how do you know they are not failing over?
How are your sites and services configured? Are the new domain controllers in the right Site?
Is the DNS primary and secondary updated on the Azure Virtual Network for the Azure domain controllers? Any existing workload will need to be stopped and started to pickup any new DNS server entries.
Sign in to comment
Sign in to answer