1. (ITI310) By Eng. BASSEM ALSAID SESSIONS 9-10-11 2008

2. “ACTIVE DIRECTORY – Integrating Domain Name System with AD DS” Session 11: Integrating Domain Name System with AD DS objectives in this session: -Install and use the DNS Server role in Windows Server 2008. -Configure DNS zones. -Configure DNS server settings. -Configure zone transfers and replication.

3. DNS Types Types of DNS servers: Dynamic DNS servers Read-write DNS servers Read-only DNS servers: – Secondary DNS server. – DNS server that runs on a read-only domain controller (RODC).

4. RODC RODC stores read-only copy of Active Directory database, except passwords. When user authenticate, RODC verifies that account exists then forward it to a regular DC. This could be useful for branch offices that doesn’t have IT staff on site. It can be used also by third-party applications to prevent accidental changes. However, in RODC branch office administrators cannot modify Active Directory objects and extra traffic may occur due to excessive authentication packets to regular DC. An RODC makes it possible for organizations to easily deploy a domain controller in scenarios where physical security cannot be guaranteed, such as branch office locations.

6. DNS server placement in a Windows Server 2008 R2 network: DDNS follows DCs, primaries are protected, and RODCs are internal, whereas secondaries are external.

7. Understanding DNS The first thing to understand when working with DNS is how it works to resolve a name. You already know that DNS relies on a hierarchy of servers because a DNS server cannot hold all possible name records within itself. Because of this, the DNS service relies on name referrals to perform name resolution. Remember that: “DNS is a system that does not and cannot work alone”.

9. DNS Terms and Concepts See PDF File: “MCTS EXAM 70-640, Configuring Windows Server 2008 - Active Directory.pdf” Page: 453.

10. DNS Zone Types Domain DNS zone: This is the zone that contains the records for a particular domain, either a root or a child domain, within an AD DS forest structure. Windows Server 2008 R2 DNS service supports three zone types: Primary zones Secondary zones Stub Zones

12. Configuring DNS The DNS configuration involves several activities. These include: Considering the security of your DNS servers to reduce their attack surface. Configuring scavenging settings for the server as a whole. Finalizing the configuration of your FLZs. Creating RLZs. Adding custom records to FLZs for specific services and resources. It is also a good idea to make sure your DNS replication is working properly.

13. Practice: Installing the DNS Service. Create a Manual Zone Delegation.

14. NEXT SESSION C9: Monday 14-Jul-2014 16:30 C10: Tuesday 15-Jul-2014 16:30 Title: “REVISION” THANKS