我们所有的 DNS 服务器 (Win2003/2008) 每天一次一遍又一遍地报告此错误。否则 DNS 工作正常。在这一点上这很烦人,但我很想摆脱它(它阻塞了我们的监控工具)。我已验证 AD 代表合作伙伴都拥有服务器的 IP。
DNS server has updated its own host (A) records. In order to ensure that its DS-integrated peer DNS servers are able to replicate with this server, an attempt was made to update them with the new records through dynamic update. An error was encountered during this update, the record data is the error code.
If this DNS server does not have any DS-integrated peers, then this error
should be ignored.
If this DNS server's Active Directory replication partners do not have the correct IP address(es) for this server, they will be unable to replicate with it.
To ensure proper replication:
1) Find this server's Active Directory replication partners that run the DNS server.
2) Open DnsManager and connect in turn to each of the replication partners.
3) On each server, check the host (A record) registration for THIS server.
4) Delete any A records that do NOT correspond to IP addresses of this server.
5) If there are no A records for this server, add at least one A record corresponding to an address on this server, that the replication partner can contact. (In other words, if there multiple IP addresses for this DNS server, add at least one that is on the same network as the Active Directory DNS server you are updating.)
6) Note, that is not necessary to update EVERY replication partner. It is only necessary that the records are fixed up on enough replication partners so that every server that replicates with this server will receive (through replication) the new data.
服务器是否有多个网络接口卡?它们中的任何一个都启用了 DHCP 吗?如果有多个 NIC,则应该只允许一个在 DNS 中注册它的记录,原因有很多。
更新的答案:
甚至您的 DC 也可以是 DHCP 客户端......这只是一个非常 糟糕的 主意.. :) 除了一个静态 IP 之外,我会取消选中“在 DNS 中注册”,这样服务器只会将一个 IP 用于 AD 服务.
如果您的服务器在不同的独立子网中有 NIC,并且您在所有网络中都需要 AD 服务,那么您就有麻烦了,因为客户端有时会为您的 DC 获得可访问的 IP,但有时他们会收到无法访问的 IP。在这种情况下,您需要在 AD 中创建站点并将子网连接到每个站点
将 IP 地址的静态 A 记录放在 DNS 中,然后关闭“在 DNS 中注册”。