Hello DBA-Bandy,
First I would check if the servers you are updating have installed the pre-requisite update stacks:
The May 11, 2021 servicing stack update (SSU) (KB5003243), or the latest SSU (KB5003711)
On the other hand, is not a strange issue regarding DNS Operation Refused, usually because the computer account or CNO has no access to update the DNS record.
In this case, there are 2 options:
- Check the ACL for the Cluster name DNS record (Properties of the record>Security tab> add the CNO computer names as Full Control.
- Delete the DNS record and create again:
Simply delete the A record, recreate again and ensure to check the box for “Allow any authenticated user to update DNS record with the same owner name"
Hope it helps in your case!
Best regards,