Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Monday, September 10, 2012 6:19 PM
Hello everybody,
In the DHCP configuration there is a calling
Name protection in windows server 2008R2 help define this protection as follows:
"Use of name protection in Windows Server prevents the misappropriation of name for computers that are not Windows-based."
If my DNS zone is stored in ADDS and accepts only secure updates, how can a windows computer does not register in dns zone?
All replies (3)
Wednesday, September 12, 2012 6:22 AM âś…Answered
Hi,
You mean only secure updates restrict only domain member could update DNS record? It's correct on client update DNS not correct on DHCP server update DNS. The DHCP Server service can perform proxy registration and update of DNS records.
When you enable DHCP Name protection, the DHCP with DNS tab will become not configurable. It means it enable DHCP 81 option to always use DHCP server to update DNS records. On the other hand, Secure DNS updates must be configured for Name Protection to work.
http://technet.microsoft.com/en-us/library/cc787034(WS.10).aspx
http://technet.microsoft.com/en-us/library/ee941152(WS.10).aspx
Regards,
Rick Tan
TechNet Community Support
Tuesday, September 11, 2012 9:39 AM
Hi,
Thank you for the post.
1.Name Protection feature prevents name squatting to non-Windows OS machines. It means it will verify DNS DHCID Resource Record before update DNS.
2.To Windows computer, it is based on Active Directory ACL functionality. Like several DHCP servers need to added to DnsUpdateProxy group, or they have no permission to update the DNS record which created by another DHCP server.
What Is Name Protection
http://blogs.technet.com/b/teamdhcp/archive/2009/01/29/what-is-name-protection.aspx
Windows 2008R2 DHCP name protection
http://social.technet.microsoft.com/Forums/en-US/winserverNIS/thread/a61e0dee-5291-4b50-ab4f-95855ac9587b
DNS Record Ownership and the DnsUpdateProxy Group
http://technet.microsoft.com/en-us/library/dd334715(WS.10).aspx
If there are more inquiries on this issue, please feel free to let us know.
Regards
Rick Tan
TechNet Community Support
Tuesday, September 11, 2012 12:09 PM
Thanks for the reply
However I do not believe I've been very happy in my question
What I wanted to know if my DNS zone accepts only secure updates, upgrades, and this zone is integrated with AD, how can a computer that is not in the field to get a ip through DHCP and even register in my area?