Microsoft dhcp server not updating dns

03-Oct-2019 08:02

This option is useful for organizations that haven’t configured reverse lookup zones where attempts to register PTR records cause errors in the event log.

It wasn’t until I realized that DHCP was actually handling the registration on behalf of the OS through the use of an authenticated domain account that I realized change the DNS setting wasn’t necessary, after all its a secure user account.Through DHCP, many of the tasks associated with IP addressing can be automated.However, implementing DHCP also introduces some security issues because anyone with physical access to the network can plug in a laptop and obtain IP information about the internal network.For domain-joined clients, they will have an A record registered in the forward lookup zone, but not the reverse lookup zone. This can be completed through triggers for ISC DHCP.The IPv4-only script and setup information is available from ISC DHCPd: Dynamic DNS updates against secure Microsoft DNS There is an alternative script that supports IPv4 and IPv6, but using the same premise as the above script is available at

It wasn’t until I realized that DHCP was actually handling the registration on behalf of the OS through the use of an authenticated domain account that I realized change the DNS setting wasn’t necessary, after all its a secure user account.

Through DHCP, many of the tasks associated with IP addressing can be automated.

However, implementing DHCP also introduces some security issues because anyone with physical access to the network can plug in a laptop and obtain IP information about the internal network.

For domain-joined clients, they will have an A record registered in the forward lookup zone, but not the reverse lookup zone. This can be completed through triggers for ISC DHCP.

The IPv4-only script and setup information is available from ISC DHCPd: Dynamic DNS updates against secure Microsoft DNS There is an alternative script that supports IPv4 and IPv6, but using the same premise as the above script is available at

If you dont set it, you may see an empty name in your DHCP server lease section.