Set CurrentTime on a zone usng dnscmd

Dnscmd /ageallrecords command sets current time on a timestamp to resource record at a specified dns zone.


The following shows setting current time on a timestamp to resource record on a zone called "myrootdns.com" in a dnsserver "dnsserver".

dnscmd.exe dnsserver /ageallrecords myrootdns.com dnsserver.myrootdns.com







To apply timestamp to all child nodes in the forest tree, run

dnscmd.exe dnsserver /ageallrecords myrootdns.com dnsserver.myrootdns.com /tree /f






Note: 1. The ageallrecords operation is for backward compatibility between the current version of DNS and previous releases in which aging and scavenging were not supported. This operation adds a time stamp with the current time to records that do not have one and sets the current time on records that do have a time stamp.
2. Scavengin of resource records will not occur until they are timestamped.
3. NS, SOA and WINS records are not included in the scavenging process timestampt doesn't apply to them as well the /ageallrecords operation
4. This operation fails unless scavenging is enabled for the DNS server and the zone.
To enable scavenging on a zone.
5. Adding time stamp to DNS records makes them incompatible with DNS servers that run on earlier versions of operating systems.
6. Time stamp you add by using the ageallrecords operation cannot be reversed.

Relevant Posts:
TroubleShoot:dnscmd /ageallrecords fails

Remove the DNS Domain Controller (DC)

The following illustrates on how to remove a Domain Controller for a particular domain

1. Type dcpromo /adv on command prompt.







2. Select the option "This server is the last domain controller in the domain" and press next.
















3. Now enter the Administrator password to be used for next logon after uninstallation of DC
















4. Verify the summary dialog box and click next

















5. It removes the DNS domain controller

Uninstall or Demote DNS Domain Controller (DC) in the order

Before uninstalling DC, just look in to the following conditions to be met for successful uninstallation or demotion of a Domain Controller (DC) for a DNS domain.

1. If the Domain Controller is the main domain controller(not necessarily root domain controller). i.e If the Domain Controller is not additional domain controller for the domain then,

a) If the domain have any child or subdomains, then domain controllers (DCs) for child domains needs to be demoted first.

b) if the domain controller don't have any subdomains, then demote the DC following procedure described at Remove the Main DNS Domain Controller (DC) and select the option "This dns server is the last domain controller in the domain" as shiown below.
















2. If domain controller is additional domain controller, then unstall this domain controller by using command dcpromo as described at how to remove additional domain controller and unselect the option "This dns server is the last domain controller in the domain" as shown below.

Install DNS Aditional Domain Controller (DC) silently using unattended file

The following illustrates on how to add additional Domain Controller (DC) for a existing DNS using unattended file.

1. Assume your DNS name for which additional DC required is "myrootdns.com" and your primary DNS server IP is 192.168.1.100 and seconder DNS IP for which additional Domain Controller is to be added is 192.168.1.200

2. In the following text, Replace the "youradminpassword" and "yoursafeadminpassword" with any password and put the text into a file say additionaldc.txt

[DCInstall]
Username = Administrator
Password = youradminpassword
ReplicaOrNewDomain = Replica
RebootOnSuccess = no
SafeModeAdminPassword = yoursafeadminpassword
ReplicaDomainDNSname = myrootdns.com


3. Now run the command dcpromo /answer:additionaldc.txt on the secondary DNS server





4. After successful completion of additional DC installation wizard restart the Secondary DNS Server

5. Now to test the Additional DC from a DNS client, do the following

i. First set the TCP IP DNS server settings on DNS Client as shown below

















6. From DNS Client ping myrootdns.com, the primary DNS server (DC) with ip 192.168.1.100 responds. Then shutdown primary DNS server. and do ipconfig /flushdns on client. Again ping myrootdns.com. But this time the seconday DNS (DC) server responds as shown in the diagram.

how to remove additional domain controller

To uninstall additional domain controller, do the following.


1. On command prompt, type dcpromo /adv.

2. Uncheck "This server is the last domain controller in the domain" option in remove active diretory wizard(because this server is not the last domain controller in the domain so uncheck that option) and click next.

3. Enter Administrator password and click next.
4. Click next on summary dialog 5. Thus completes removing additional domain controller.