Active Directory
A set of directory-based technologies included in Windows Server.
6,121 questions
finding incorrect Sites listings in DNS that do not correspond to ADSS
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 26%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED0%3C/text%3E%3C/svg%3E)
DaleatEMS-0938
0
Reputation points
Within an enterprise that has an aged Active Directory domain structure of multiple decades in age and AD Integrated DNS (replication tested as healthy ...dcdiag) ...as a somewhat new admin have found that changes I've made to update ADSS are not reflected in DNS. Instead there is outdated Sites information found under the Forward Lookup Zones ... _MSDCS.dom.tld->DC->Sites, _MSDCS.dom.tld->GC->Sites, and dom.tld->_sites
What I've done is use dcdiag to perform tests that show healthy replication and no errors, examined the Event Logs on the FSMO holder DC (holds all the roles - there are two other DC's ...one at primary site ...one at colo site), have used NTDSUTIL to examine domain metadata and ensure that no improperly demoted former DC's are listed in the two sites that contain DC's
Perhaps this isn't causing any issues - but why is this "sites" information out of sync with ADSS? Can it be corrected and if so how?