Why does the DHCP server keep losing authorization?

boB Gage 11 Reputation points
2024-03-27T22:09:20.5133333+00:00

We have a dual-NIC device serving a private network. We've authorized the DHCP server multiple times, and every time it gets authorized, the authorization disappears within a few days.

The DHCP service claims it needs to be authorized, and the admin in charge of our domain controllers insists that it is. However, within 48 hours, the authorization disappears from the service, though not from the DC.

This is possibly related to the fact that the LOGONSERVER environment variable points to itself, not a corporate domain controller.

Is this why it keeps losing authorization? Can it be forced to log in to a specific DC rather than itself?

Windows DHCP
Windows DHCP
Windows: A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.DHCP: Dynamic Host Configuration Protocol (DHCP). A communications protocol that lets network administrators manage centrally and automate the assignment of Internet Protocol (IP) addresses in an organization's network.
1,023 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Karlie Weng 14,331 Reputation points Microsoft Vendor
    2024-03-28T02:37:33.87+00:00

    Hello,

    LOGONSERVER pointing to itself rather than a domain controller could indeed be an issue

    The LOGONSERVER environment variable indicates which server authenticated the current user session. If it points to itself rather than a dc, it suggests that the server either thinks it's the dc or is attempting to authenticate users locally instead of referring them to the actual domain controller.

    In the context of DHCP server authorization, this can be problematic because often, DHCP servers in a domain environment need to communicate with the DC for various tasks, such as registering DHCP leases in DNS, handling security groups.

    If the DHCP server is not properly connected to or authenticating against the domain controller, it may fail to maintain its authorization status.

    To direct the DHCP server to prefer a specific dc, you may configure the DHCP server to use the correct dc as its primary and secondary DNS servers. This ensures that name resolution and authentication requests go to the intended DCs.

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments