I have a Windows 2008 R2 that I am trying to use as a domain controller for a group of computers that will not be connecting to the Internet but I still wanted the centralized management of Active Directory. I have installed the AD DS using the wizard and allowed the wizard to install and configure DNS. The wizard said completed just fine as I have used a domain name of "MCC5500.local". I did have the computer name as "ADM" with the FQDN being "ADM.MCC5500.local" static IP address of the network card is 10.1.105.220. When I open the DNS manager in the reverse lookup zones were never created, the forward lookup zones I see the following structure
Name Type Status
_msdcs.MCC5500.local Active Directory-Integrated Primary Running
MCC5500.local Active Directory-Integrated Primary Running
and each of the above folders
Name Type Data Timestamp
(same as parent folder) Start of Authority (SOA) [3], adm.mcc5500., hostmaster.mcc5500.local. static
(same as parent folder) Name Server (NS) adm.mcc5500. static
Name Type Data Timestamp
_msdcs
(same as parent folder) Start of Authority (SOA) [5], adm.mcc5500., hostmaster.mcc5500.local. static
(same as parent folder) Name Server (NS) adm.mcc5500. static
(same as parent folder) Host (A) 10.1.105.220 ?3/?31/?2015 10:00:00 PM
In the C:\Windows\System32\config directory the netlogon.dns file contains the following
MCC5500.local. 600 IN A 10.1.105.220
_ldap._tcp.MCC5500.local. 600 IN SRV 0 100 389 ADM.MCC5500.
_ldap._tcp.Default-First-Site-Name._sites.MCC5500.local. 600 IN SRV 0 100 389 ADM.MCC5500.
_ldap._tcp.pdc._msdcs.MCC5500.local. 600 IN SRV 0 100 389 ADM.MCC5500.
_ldap._tcp.gc._msdcs.MCC5500.local. 600 IN SRV 0 100 3268 ADM.MCC5500.
_ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.MCC5500.local. 600 IN SRV 0 100 3268 ADM.MCC5500.
_ldap._tcp.3c30c1b0-8905-4c33-b6e7-45b3eb996fb8.domains._msdcs.MCC5500.local. 600 IN SRV 0 100 389 ADM.MCC5500.
gc._msdcs.MCC5500.local. 600 IN A 10.1.105.220
6663810b-2407-4b1d-9e99-8e3f4d782ea7._msdcs.MCC5500.local. 600 IN CNAME ADM.MCC5500.
_kerberos._tcp.dc._msdcs.MCC5500.local. 600 IN SRV 0 100 88 ADM.MCC5500.
_kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.MCC5500.local. 600 IN SRV 0 100 88 ADM.MCC5500.
_ldap._tcp.dc._msdcs.MCC5500.local. 600 IN SRV 0 100 389 ADM.MCC5500.
_ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.MCC5500.local. 600 IN SRV 0 100 389 ADM.MCC5500.
_kerberos._tcp.MCC5500.local. 600 IN SRV 0 100 88 ADM.MCC5500.
_kerberos._tcp.Default-First-Site-Name._sites.MCC5500.local. 600 IN SRV 0 100 88 ADM.MCC5500.
_gc._tcp.MCC5500.local. 600 IN SRV 0 100 3268 ADM.MCC5500.
_gc._tcp.Default-First-Site-Name._sites.MCC5500.local. 600 IN SRV 0 100 3268 ADM.MCC5500.
_kerberos._udp.MCC5500.local. 600 IN SRV 0 100 88 ADM.MCC5500.
_kpasswd._tcp.MCC5500.local. 600 IN SRV 0 100 464 ADM.MCC5500.
_kpasswd._udp.MCC5500.local. 600 IN SRV 0 100 464 ADM.MCC5500.
DomainDnsZones.MCC5500.local. 600 IN A 10.1.105.220
_ldap._tcp.DomainDnsZones.MCC5500.local. 600 IN SRV 0 100 389 ADM.MCC5500.
_ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.MCC5500.local. 600 IN SRV 0 100 389 ADM.MCC5500.
ForestDnsZones.MCC5500.local. 600 IN A 10.1.105.220
_ldap._tcp.ForestDnsZones.MCC5500.local. 600 IN SRV 0 100 389 ADM.MCC5500.
_ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.MCC5500.local. 600 IN SRV 0 100 389 ADM.MCC5500.
The closest thing I can find that is beneficial is kb article 816587 "How to verify that SRV DNS records have been created for a domain controller. The article was for server 2003 but is really close.
When I try and open nslookup on the server from the command prompt this is what I would see
Default Server: localhost
Address: 127.0.0.1
>set type=all
>_ldap._tcp.dc._msdcs.MCC5500.local
Server: localhost
Address: 127.0.0.1
DNS request timed out.
timeout was 2 seconds.
*** localhost can't find _ldap._tcp.dc._msdcs.MCC5500.local: Non-existant domain
I have tried multiple times to restart the netlogon service and even restarted the domain controller. Nothing has seemed to have had an effect.
Thoughts?
Vic