Monday, October 3, 2011

Updating Dynamic DNS registration after security group membership change

Updating a dynamic DNS record after a computer is added to a group providing the necessary permission usually requires a restart.  An alternative is to clear the Network Service Kerberos ticket cache and restart the DNS Client service.  This procedure was tested on Windows Server 2008 R2:
Clear the current list of tickets for the Network Service account
klist -lh 0 -li 0x3e4 purge
Restart the DNS Client service
sc stop dnscache
sc start dnscache

No comments:

Post a Comment