Why won't DNS role install on Server 2008 r2 with dcpromo or after running dcpromo

domain-name-system domain-controller active-directory
5,071

The A delegation for this DNS server cannot be created error is not fatal, and should in fact be expected if the parent domain that it's trying to check doesn't exist (in your case, local assuming the domain you're adding to is customer.local). The error dialog asks if you want to continue; you do. See MS's documentation here.

enter image description here

Now that you're in this situation, demote the system out of being a domain controller with dcpromo.exe, then re-promote the system to a domain controller (run dcpromo again after rebooting after the demote), selecting the DNS option and ignoring the delegation warning.

Share:
5,071

Related videos on Youtube

Blackjack00
Author by

Blackjack00

Updated on September 18, 2022

Comments

  • Blackjack00
    Blackjack00 over 1 year

    I am unable to install the DNS role with dcpromo.exe when adding a new server to an existing forest.

    Current Configuration

    I currently have a domain controller running windows server 2008 r2. Let's call it server1. It has one domain on it. Let's call it customer.local.

    I have setup a second server, vserver, running the same operating system. It has the hyper-v role installed on it. It is running a virtual, server 2008 r2 box, called server2.

    I am now trying to add server2 as a second domain controller in the existing forest with the eventual intention of transferring the FSMO roles and eliminating the first server.

    Issue

    Now, when I add the domain controller server role to the virtual machine, I get the following error:

    A delegation for this DNS server cannot be created because the authoritative parent zone cannot be found or it does not run Windows DNS Server. If you are integrating with an existing DNS infrastructure you should manually create a delegation to this DNS server in the parent zone to ensure reliable name resolution from outside the domain.

    To correct this issue, I removed the AD DS role and attempted to create a delegation on my first server currently running active directory/dns. However, I do not want to create a subdomain, which appears to be my only option when creating a delegation. It wants me to delgate a "name.customer.local" subdomain.

    I decided to take a different tactic. In researching the problem, I found many suggesting that the DNS role could be added after installing the AD DS role. I now get this error:

    You cannot use the Add Roles Wizard to install DNS Server on a computer with Active Directory Domain Services. Instead, run the AD DS Installation Wizard (dcpromo.exe) to to install AD DS and DNS Server together.

    Some other notes:

    1. I am only using the administrator account on my domain to take these actions. Naturally, the administrator account is a member of all the admin groups.

    2. There is no communication issue between any of my servers.

    3. All servers have completed all windows updates.

    4. I have added the ip address of my server2 on the zone transfer tab of the customer.local zone on server1.

    My Question

    1. What steps can I take to install the DNS role on server2?
    2. Are there any other steps I should take to confirm the new domain controller has been properly added into the existing domain before I start transferring FSMO roles?
    3. Is there something I could do in the future to prevent this issue?
  • Blackjack00
    Blackjack00 about 11 years
    I will try that now and repost.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Can't connect to domain controller
Cannot connect Windows 7 machine to windows 2003 domain
Windows Domain Controller/DNS Failure
Active Directory Multi Site. Choose nearest DCs into Linux/Not-Microsoft applications
Mutli-DC Environment DNS Error 4015
AD Dynamic DNS Updates not triggering on clients
Cannot create a new domain in an existing active directory forest
Active Directory: is it good to have 127.0.0.1 as DNS server entry on 2 machines that are 2 DNS servers in a local net?
Why can't I replicate DNS zones to non-DC DNS servers?
dns in a small network with router and AD domain