Hey everyone! I'm facing a frustrating issue where some of our Windows 10 and 11 clients aren't updating their machine names in Active Directory DNS. Sometimes their names don't show up at all, which complicates updates and support. Right now, we use Active Directory for DHCP, but the clients are configured to use Cisco Umbrella servers for their DNS. So, I have a few questions:
- Is it the DHCP server's job to notify the AD DNS servers when a client changes IP?
- Or is it up to the client to inform the AD DNS server of any IP changes?
- Could the Umbrella service somehow be responsible for updating AD DNS when a client's IP changes?
I'm more of a Network guy focused on the Umbrella side, so I'm trying to understand how this all works in conjunction with DNS updates.
5 Answers
From a security standpoint, the client should always be the one updating DNS directly, rather than relying on DHCP or any other method. Anything else tends to introduce vulnerabilities.
When you have Windows Server DHCP set up correctly, it usually registers client records in DNS automatically for you. This setting is enabled by default for most configurations. The updates won't go through the Umbrella DNS appliances, though, so if you're having issues, it's likely unrelated to Umbrella.
You might also want to look into enabling DNS scavenging for your zones if you haven’t done so already. It helps clear out old records and improves accuracy, even though you'll still experience some propagation delays. Remember, scavenging needs to be configured for each zone, including reverse lookup zones.
Generally speaking, DHCP is responsible for notifying DNS if it’s set to do so—you just have to check that it's configured correctly.
Also, ensure that your setup with Umbrella is right, as I’ve seen it cause random hiccups if the internal requests aren't properly routed to your internal DNS servers.
Honestly, for machines with dynamic IP addresses, it might be easier to accept that forward and reverse DNS lookups aren’t essential. If you need reliable DNS, consider DHCP reservations to ensure machines consistently have the same IP address. With IPv6, you might need client configurations for dynamic addresses.
In my experience, for end-user devices like laptops and desktops, the clients usually handle Dynamic DNS (DDNS) registration on their own. However, in areas with printers or other devices, the InfoBlox appliances take care of it for those.
So, it sounds like the setup can differ based on the type of device and its network role.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures