bind vs. MS DNS
Barry Finkel
b19141 at achilles.ctd.anl.gov
Thu Jun 17 13:47:16 UTC 2004
Kevin Darcy (I believe) responded to a posting:
>> Now, if you want to make secure Dynamic
>> Updates directly from Win2K (or Win2K3) clients to the DNS of your main
>> domain, then you're not going to be able to use BIND for that. But
>> technically that's not an Active Directory function; it's a Win2K*
>> function, and one that many folks find to be not worth the resources it
>> consumes. Depends on what you're trying to achieve.
and Robert Lowe <Robert.H.Lowe at lawrence.edu> replied:
>We turn off DDNS in all of our client images. Client-initiated dynamic
>updates is a bad idea anyway. We use TSIG signed updates from ISC's
>DHCP server for the few zones where we do DDNS. DHCP is probably
>another aspect of this discussion regarding migration too. :-(
We attempt to turn off DDNS on all our W2k machines. But DCs need
self-registration enabled in order for the DC to register its SRV
records.
----------------------------------------------------------------------
Barry S. Finkel
Computing and Instrumentation Solutions Division
Argonne National Laboratory Phone: +1 (630) 252-7277
9700 South Cass Avenue Facsimile:+1 (630) 252-4601
Building 222, Room D209 Internet: BSFinkel at anl.gov
Argonne, IL 60439-4828 IBMMAIL: I1004994
More information about the bind-users
mailing list