Share via

Dynamic A records of clients can be created well, but PTR does not. And Clients have the rights to create.

Nell Derek 21 Reputation points
2020-10-16T06:11:04.237+00:00

For clients that obtained IP from DHCP, the A records can be generated fine but PTR records in the reverse zone can’t be generated. We can created the PTR record manually and we can update the PTR with the A record checkbox on any scope. We are not using DHCP options as the DHCP servers are Load Balanced (via DHCP) and the owning DHCP servers doesn’t allow the second one to update. Is there any ideas on why the PTR record cannot be created?

Windows DHCP
Windows DHCP
Windows: A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.DHCP: Dynamic Host Configuration Protocol (DHCP). A communications protocol that lets network administrators manage centrally and automate the assignment of Internet Protocol (IP) addresses in an organization's network.
1,025 questions
0 comments
Accepted answer
  1. Sunny Qi 10,901 Reputation points Microsoft Vendor
    2020-10-19T04:31:15.857+00:00

    Hi,

    Thanks for your feedback.

    For secure dynamic update, could you please help confirm if the DHCP server has the right to register PTR records in DNS? To grant the access to the DHCP server, please help to verify if the DHCP server's computer account was added in DnsUpdateProxy in ADUC or if the DHCP credentials was configured on DHCP server. If not, please grant access to DHCP server to see if it is helpful.

    33203-image-1.jpg

    33149-image-2.jpg

    Or please check from the DHCP client side, if Register this connection's addresses in DNS and Use this connection's DNS suffix in DNS registration was enabled on DNS configuration. If not, please enable these 2 options for test.

    33136-image-3.jpg

    For more details related to DNS dynamic updates, please refer to the following article.
    https://blogs.msmvps.com/acefekay/2009/08/20/dhcp-dynamic-dns-updates-scavenging-static-entries-amp-timestamps-and-the-dnsproxyupdate-group/
    Please Note: Since the websites are not hosted by Microsoft, the links may change without notice. Microsoft does not guarantee the accuracy of this information.

    Best Regards,
    Sunny

    ----------

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    1 person found this answer helpful.
    0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Sunny Qi 10,901 Reputation points Microsoft Vendor
    2020-10-16T07:40:21.527+00:00

    Hi,

    Thanks for posting on Q&A platform.

    Based on my understanding, the issue is about client failed to update its PTR record when registering A record, am I right here? Please correct me if my understanding is wrong.

    Please help to confirm whether the Dynamic updates on DNS server was configured as Secure only.

    32809-image-2.jpg

    By default, for the client obtained IP address from DHCP, the client will register its DNS A record, and the DHCP server register the DNS PTR record of the client. We could choose Dynamically update DNS A and PTR records only if requested by the DHCP clients.

    Please kindly check DNS tabs in IPv4 properties on DHCP server, if “Always dynamically update DNS records” was selected. This mode means the DHCP server will always perform updates of the client's FQDN and leased IP address information regardless of whether the client has requested to perform its own updates. If “Dynamically update DNS A and PTR records only if requested by the DHCP clients”. This mode means DHCP server will register and update client information with its configured DNS servers according to the client request.

    32810-image-1.jpg

    Hope my answer will help you.

    Best Regards,
    Sunny

    ----------

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.