4

I created testing environment with clean Windows Server 2016 active directory (clean install), default options on AD role installation and DNS server (running on the same machine as AD). When i join windows computer to the domain everything works fine and i can ping COMPUTER1.ad.mydomain.com

but when i am joining linux (centos 7) with realm (current version from the repository) no dns is created AD record is created tho... sooo.. no ping (nor ssh) on COMPUTER2.ad.mydomain.com

How to enforce dns record creation?

Daniel
  • 7,137
LightCZ
  • 181

3 Answers3

3

So, the answer is combination is Andys and Mikhail solutions. with SSSD when you allow Win DNS Nonsecure updates and you set 

dyndns_update=true

in your /etc/sssd/sssd.conf Your DNS records will be created and properly maintained. Seems its working fine for me right now.

LightCZ
  • 181
1

In my case, issue was in short non-fqdn hostname. After I'd added .domain.com to my hostname, registration succeeded. Also check https://serverfault.com/a/821716/512695

Alexander Cherkendov
  • 121
-2

I believe dynamic DNS registration won't work for Linux clients as well for non-domain joined Windows clients. But if those boxes are DHCP clients of Windows DHCP Server you can configure your DHCP server to perform DNS registration on behalf of those clients:

1) On Windows DHCP server: Scope properties > DNS > Enable : Dynamically update DNS A and PTR records for DHCP clients that do not request update

2) On DNS : Right click on your zone > Properties > General > set Dynamic update to : Nonsecure and Secure

Mike
  • 1,335