Free Trial

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint
Share this Page URL
Help

Chapter 3. Implementing and Managing DNS > Integrating Active Directory and DNS

Integrating Active Directory and DNS

Throughout this chapter, we’ve been working with standard DNS zones on a Windows Server 2003 member server—a server that is not a Domain Controller. While there is nothing wrong (at a basic level) with this configuration and implementation of the Windows Server 2003 DNS service, to fully utilize the power and flexibility, you should use Active Directory-integrated DNS. Active Directory-integrated DNS offers several performance enhancements and is inherently more secure. Recall that the Security tab in the server Properties dialog box is unavailable for standard DNS servers; it is available only when DNS is running on a Domain Controller. Likewise, the Security tab in the zone Properties dialog box is available only when a zone is configured as Active Directory-integrated and running on a Domain Controller. Additionally, only when using Active Directory-integrated zones will you be able to configure Secure dynamic updates.

Exam Alert: Securely Implementing DNS Using Windows Server 2003

Active Directory is more secure than a flat file, and updates and zone transfers occur as part of Active Directory replication activities, which are encrypted. As a result, an Active Directory-integrated zone is the most secure DNS implementation possible.



  

You are currently reading a PREVIEW of this book.

                                                                                                                    

Get instant access to over $1 million worth of books and videos.

  

Start a Free Trial


  
  • Safari Books Online
  • Create BookmarkCreate Bookmark
  • Create Note or TagCreate Note or Tag
  • PrintPrint