Share via

Active Directory DNS Records have disappeared

Omid Shojaee 121 Reputation points
2022-03-05T13:19:19.863+00:00

Hello,

We installed and configured our Active Directory about 3 months ago.

AD DS and DNS roles installed on a server and then other computers joined. Everything was OK.

However today after 3 months we tried to join a few more machines but because the DNS lookup for SVR record failed, I logged into the AD server to find out that all DNS records are gone. Nothing is left except the zone (mydomain.com) itself plus one SOA and one NS record. Everything else is wiped out.

I'm the only one who has access to this server.

I tried to solve this by removing DNS role and adding it again, to no avail.

This is a crisis for us. Please assist.

Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Windows for business | Windows Client for IT Pros | Networking | Network connectivity and file sharing
0 comments
Answer accepted by question author
  1. Anonymous
    2022-03-09T14:19:27.827+00:00

    That sounds very risky. Have you addressed the issues I raised? A much simpler / safer method is to stand up a new one for a test.

    I'd use dcdiag / repadmin tools to verify health correcting all errors found before starting any operations. Then stand up the new one, patch it fully, license it, join existing domain, add active directory domain services, promote it also making it a GC (recommended), transfer FSMO roles over (optional), transfer pdc emulator role (optional), use dcdiag / repadmin tools to again verify health, when all is good you can decommission / demote old one.

    --please don't forget to upvote and Accept as answer if the reply is helpful--

    1 person found this answer helpful.

14 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2022-03-06T15:11:57.02+00:00

    What's the result of
    nslookup <domain name>

    0 comments
  2. Anonymous
    2022-03-06T15:19:29.86+00:00

    Also
    By default, the primary DNS suffix is the same as the name of the Active Directory domain to which the computer belongs

    Host Name . . . . . . . . . . . . : dc
    Primary Dns Suffix . . . . . . . : e
    Node Type . . . . . . . . . . . . : Hybrid
    IP Routing Enabled. . . . . . . . : No
    WINS Proxy Enabled. . . . . . . . : No
    DNS Suffix Search List. . . . . . : hamrahfelez.net

    So I'd fix that
    https://www.dell.com/support/kbdoc/en-us/000139286/windows-server-dns-suffix-is-missing-on-domain-controller-name-server-records

    --please don't forget to upvote and Accept as answer if the reply is helpful--

  3. Omid Shojaee 121 Reputation points
    2022-03-08T14:08:48.967+00:00

    @Anonymous

    Thanks. I don't have access to the server for a few days. I'll update you as soon as I got somewhere.

    But I can tell you that nslookup works fine which means the DNS service is OK. It's just the GUI that doesn't work :(

    0 comments
  4. Omid Shojaee 121 Reputation points
    2022-03-09T13:29:40.297+00:00

    @Anonymous

    Would you please comment on this scenario:

    • Backup AD data (users and computers). I think Windows built-in tool is enough.
    • Rebuild AD machine.
    • Restore backup.

    Thanks.

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.