Using "DNS resource" in Geo-cluster with windows active directory
Created: 16 Jan 2013 | Updated: 22 Jan 2013 | 4 comments
This issue has been solved. See solution.
Dears , We have Geographic cluster in two sites running solaris , when SG failover we need to make it update DNS entry so that clients can know which virtual IP is currently working ..
DNS resource example are just for BIND , when tried it with windows active directory it works fine unless we use secure updates "which is mandatory ofcourse"
How can i create needed key , allow-update for cluster members from windows side ?
Discussion Filed Under:
Comments 4 Comments • Jump to latest comment
DNS updates to Windows secure DNS is only supported from 6.0 upwards and you need to use the UseGSSAPI attribute - see extract from VCS 6.0 bundled agents guide:
UK Symantec Consultant in VCS, GCO, SF, VVR, VxAT on Solaris, AIX, HP-ux, Linux & Windows
If this post has helped you, please vote or mark as solution
Thanks alot for the answer , any ideas for workarounds on earlier versions ?
I don't think there is anyway to update a Secure Windows DNS server from VCS prior to 6.0 - the only possible work-a-round that might work is if you update a UNIX/Linux server (this can be secure) and the UNIX server propagates out the change to a Windows Secure DNS server, but I don't know much about DNS to know exactly how this would work.
It is possible the 6.0 agent was backported to an earlier version, but I had a look at 5.1SP1RP3 release notes and I couldn't see anything, so looks unlikely.
Mike
UK Symantec Consultant in VCS, GCO, SF, VVR, VxAT on Solaris, AIX, HP-ux, Linux & Windows
If this post has helped you, please vote or mark as solution
yea , i see ... i shall discuss the upgrade option with the customer i guess ..
Thanks ...
Would you like to reply?
Login or Register to post your comment.