root zone update by all GCs?

[bruno postiau]

Hi,
I installed AD with a dedicated root domain. (one tree for root, another in
same forest for mycompany.com)
Everything is working fine, except for Global Catalog queries for
mycompany.com
I cheched the logs and saw that GCs in mycompany.com wants to update the
zone file for
the root domain, not adding its GC info to the mycompany.com zone file. Is
this a normal behaviour? Should I then give update access to GCs in
mycompany.com ?
Is this behaviour also occuring in the other way (should i give root GCs
access to the mycompany zone?)

Thanks in advance for your help

Bruno

 

[Michael Johnston [MSFT]]

This is normal. All global catalog entries register in the root domain. In your case they may not be able to find the root domain since it's in a parallel DNS
structure. On your dns servers for mydomain.com, add a secondary zone for the root domain's DNS zone. Make sure that the root DNS servers allow zone
transfers and then transfer the zone over. This should allow the mydomain.com GCs to find the root domain and register the records. Normally this isn't a
problem is a child/parent relationship exists between the root domain and the other domains in the forest. Since you've configured them in parallel, there
simply is no way for them to find the root domain without adding a secondary.

Thank you,
Mike Johnston
Microsoft Network Support


--

This posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this message are best directed to the newsgroup/thread from which they originated.

 

[bruno postiau]

Thanks a lot,
I set update permissions on the root domain's zone for the other DCs and it
works now.

Brgds

Bruno

This is normal. All global catalog entries register in the root domain.

In your case they may not be able to find the root domain since it's in a
parallel DNS

structure. On your dns servers for mydomain.com, add a secondary zone for

the root domain's DNS zone. Make sure that the root DNS servers allow zone

transfers and then transfer the zone over. This should allow the

mydomain.com GCs to find the root domain and register the records. Normally
this isn't a

problem is a child/parent relationship exists between the root domain and

the other domains in the forest. Since you've configured them in parallel,
there

simply is no way for them to find the root domain without adding a secondary.

Thank you,
Mike Johnston
Microsoft Network Support

rights. Use of included script samples are subject to the terms specified at

http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this

message are best directed to the newsgroup/thread from which they
originated.