2020-01-01

Migrate Active Directory DNS (in a Nutshell)

Disable AD Replication (per Domain Controller)

C:> repadmin /options <DC-NAME> +DISABLE_OUTBOUND_REPL
C:> repadmin /options <DC-NAME> +DISABLE_INBOUND_REPL

Backup AD DNS Zones

PowerShell:
PS C:> Export-DnsServerZone -Name "<zone-name>" -FileName "<file-name>"
PS C:> Export-DnsServerZone -Name "example.com" -FileName "db.example.com"

CMD:
C:> dnscmd /zoneexport <zone-name> <file-name>
C:> dnscmd /zoneexport example.com db.example.com

Sure, there are scripts to automate this.

Configure Global Forwarding for Microsoft DNS
# delete all authoritative Zones
# allow Recursion
# enable “query logging” in MS DNS (C:/Windows/System32/dns/<hostname>.log)
# test Caching-Only Configuration of MS DNS
# change TCP/IP Stack of Domain Controller (new DNS Server’s IP)

Restart netlogon Service
# registers AD records in new DNS (“underscore” stuff)
_> _msdcs.example.com
_> _sites.example.com
_> _tcp.example.com
_> _udp.example.com
_> ForestDnsZones.example.com
_> DomainDnsZones.example.com

C:> net stop netlogon
C:> net start netlogon

Register Domain Controller’s Host Record in new DNS

C:> ipconfig /registerdns

Enable AD Replication (per Domain Controller)

C:> repadmin /options <DC-NAME> -DISABLE_OUTBOUND_REPL
C:> repadmin /options <DC-NAME> -DISABLE_INBOUND_REPL

Need Assistance?
We’re happy to help you: Migration

Admin - 11:12 @ general, dns, migration