I have been trying to get dynamic updates working without having active directory. Has anyone figured out away to to allow DHCP to update the A" records in DNS without a domain? PTR records always work. Tried 3rd party DNS services but option 81 in DHCP seems proprietary in windows server even though they all say it updates "A" records. Mimicking domain users groups and permissions doesn't work. Changing authentication from kerberos to lanman, to clear text doesn't work. Tried various registry settings and user accounts to get users in dnsupdateproxy security group to allow the update to the "A" records with no success. Workgroup with suffix (workgroup.local) and option 15 doesn't work. Global zones and non secure updates? How can the tabs in DNS and DHCP on a member server have all the tabs like a domain servers DNS and DHCP have? Please anyone jump in. I cant be the only one who would want this.
I wish chatgpt was that useful. Read stories of some of the things it can do. Create things with supporting documents like photos and recording. But back here we make it work. gpedit allows for specifying direct access from client pc to a dns server. Haven't got to test against a member server yet, but it maybe what I was looking for.
And what is running the DNS server? Windows server? Then this will not happen, as DNS without AD is not stored in AD
Yes, but to get the DHCP assigned PC to send the A record without AD. Or to trick a member server running DNS to that gets the PTR record and creates the A record. The security logs shows attemps to create the record as failed logon attempt's. But even with the AD security groups created on the server it doesn't create the A record. What am I missing?
Do you have many servers? Just make the DNS server a Domain Controller and create a domain. This is the easiest way to do it. Another thing is that there is a setting in DHCP which allows you to enter a user - service account - which would perform the updates. It is highly recommended to have a regular non-admin user there in any AD configuration. I don't have a member server with DHCP and DNS to check if the configuration is available outside of AD.
Its many servers. AD means client access license and setup. Some offices use varying applications, some don't support AD, or push it back on me to make work. Stuck in member server world. Gpedit has some settings for controlling DHCP and registering the A record, but ownership and kerbose and hard to find info, mainly haven't had time to dig more into it. Was hoping for an easy way, a server side app that watches the reverse lookup and created the forward zone A record, Or stop DHCP dynamic updates and let a tool handle dynamic updates create the A and PTR records.
What you asking for, will not happen without AD. If DNS is NOT stored in AD, then DHCP will NOT update any record That is simply because DNS is in such case stored in its OWN database (to which DHCP will not write)