RODC + DNS + DHCP and AADJ Computers Dynamic DNS possible?

Question

We have remote offices with RODC + DNS + DHCP installed. We have some AADJ only computers in those sites. HQ has the RWDC's / DNS.

Is there a way to get the AADJ computers to dynamically register DNS.

Without changing the DNS zone to non-secure?

All my research kept saying use DHCP to do the Dynamic registration...but its NOT working... is it because the DHCP is installed on RODC which cannot register DNS? The RODC primary DNS is itself... should it be pointed to RWDC for this to work? However I thought RODC will refer the DNS registration to RWDC?

Been researching this for weeks... can anyone shed some light? Is what we want even possible with current configuration?

Thanks

Answer 1

Hello @Chau Le ,

RODC should in fact no to share other server roles for the challenges of information update that it may case, but there are ways to configure it (far from simple):

Please chekc the next thread for different approaches, comments, and details about such deployment: https://social.technet.microsoft.com/Forums/windowsserver/en-US/76cc0adf-6324-4f95-890c-a2986a01cecc/dhcp-role-in-rodc?forum=windowsserver2008r2branchoffice

Hope this helps with your query,

------

--If the reply is helpful, please Upvote and Accept as answer--

Answer 2

Thanks for that....I found the issue... you're right DHCP / DNS / RODC does not play nice together.

In the DHCP scope option for DNS - the RODC was listed as the first server in DNS ... which I changed this to a RWDC, the DHCP server was able to register DNS for non-member AD server immediately.