I just realized that a previous admin turned DNS scavenging on for all zones on one of the DCs, including the _msdcs zone. It’s been this way for a while and things are fine, but I can’t imagine that this is best practice. Is there any danger to scavenging the _msdcs zone? Should I make it so that zone is not scavenged? Could scavenging have broken anything in that zone that I’m unaware of at [...]

I have _msdcs Active Directory Integrated. Do I need to enable Zone transfers and notifications on changes? I have 2 domain controllers with DNS/DHCP enabled on them? I would think yes, but it’s disabled and I am not sure why? Windows 2008 R2 controllers were migrated from Windows 2003. It should replicate using AD replication, therefore zone transfer settings should be irrelevant. Do you have any DNS and/or AD replication issues? Check more discussion of [...]

I hope everybody had a good July 4th! Looking through my DNS entries, I see the following: My questions are: How do I identify which of these belongs to the current domain? Is it safe to delete the rest of them or should I just leave them all alone? Is there any harm done in keeping them? How are these ids generated? The reason I’m asking these is because I have had to rebuild Active [...]