Microsoft KB Archive/255248

= How To Create a Child Domain in Active Directory and Delegate the DNS Namespace to the Child Domain =

Article ID: 255248

Article Last Modified on 10/26/2007

-

APPLIES TO


 * Microsoft Windows 2000 Server
 * Microsoft Windows 2000 Advanced Server

-



This article was previously published under Q255248





IN THIS TASK
SUMMARY
 * Manually Create a Delegation for the Child Domain on the Parent (Root) DNS Server
 * Install DNS on the Child Domain Server
 * Create a Child Zone on the Child Domain Server
 * Enable Dynamic Updates
 * Promote the Child Domain Server
 * Optional Configuration Considerations



SUMMARY
You may want to create a child domain and then delegate the Domain Name System (DNS) namespace to a domain controller located in this child domain for any the following reasons:
 * Added DNS servers can reduce network traffic.
 * Added DNS servers can provide redundancy.
 * Active Directory namespace delegation and DNS namespace delegation remain consistent, simplifying your overall namespace design.

NOTE: When you delegate zones within your namespace, you need to create delegation records in other zones that point to the authoritative DNS servers for the new zone, and this needs to be done for each zone you create.

This article describes how to create a child domain in Active Directory, and how to delegate your DNS namespace to a domain controller located in this child domain. For a successful delegation to occur, it is important to complete the steps in the order listed.

NOTE: Global catalog and domain records exist only in parent (root) DNS server.

back to the top

Manually Create a Delegation for the Child Domain on the Parent (Root) DNS Server
 Right-click the root zone, click New Delegation, and then click Next. Type the domain name for the child domain, and then click Next. Add the child DNS server to host the new zone, and then click Next.NOTE: A domain controller that is a DNS server should have a static Transport Control Protocol/Internet Protocol (TCP/IP) address. Verify that this step is performed before you install DNS on the child domain controller. If no DNS TCP/IP address exists, DNS is installed as a root server. If you see that a "." folder is created after you install DNS, you must remove the root configuration. For additional information about how to do this, click the article number below to view the article in the Microsoft Knowledge Base:

229840 DNS Server's Root Hints and Forwarder Pages Are Unavailable

 On the child domain DNS server, right-click My Network Places, and then click Properties. Right-click the appropriate local connection, and then click Properties. Under Components checked are used by this connection, click Internet Protocol (TCP/IP), and then click Properties.</li> Click Use the following DNS server addresses:, and then type the TCP/IP address of the parent (root) DNS server.</li></ol>

back to the top

Install DNS on the Child Domain Server

 * 1) Click Start, point to Settings, and then click Control Panel.
 * 2) Double-click Add/Remove Programs, and then click Add/Remove Windows Components.
 * 3) Click Networking Services, and then click Details.
 * 4) Click to select the Domain Name System (DNS) check box, click OK, click Next, and then click Finish.

back to the top

Create a Child Zone on the Child Domain Server

 * 1) Click Start, point to Programs, point to Administrative Tools, right-click the appropriate server name, and then click New Zone. You can use the wizard to configure the child zone.
 * 2) Click Next, click Standard Primary, and then click Forward lookup zone.
 * 3) Type a name for the child zone, such as child.mydomain.com. You can use default settings for the zone file information.
 * 4) Click Next, and then click Finish.

back to the top

Enable Dynamic Updates

 * 1) Right-click the child zone you just created, and then click Properties.
 * 2) In the Allow dynamic updates? drop-down list, click Yes, and then click OK.

back to the top

Promote the Child Domain Server
Before you promote the child domain server, review the "Checklist: Installing a domain controller" in Windows 2000 Help.

To promote the server to a domain controller, click Start, click Run, type dcpromo, and then click OK.

Note that it can take up to 15 minutes for the child domain to populate the subfolders. The following folders are created:
 * _msdcs
 * _sites
 * _tcp
 * _udp

back to the top

Optional Configuration Considerations
NOTE: The following options depend on how your organization wants to setup its DNS name resolution and namespace, and using proxy servers or firewalls can influence this decision as well.
 * On the TCP/IP properties of the child domain server, change the TCP/IP address of the DNS server to point to its own TCP/IP address.
 * Consider integrating DNS with the Active Directory on the child DNS server.
 * Add the parent (root) DNS server as a forwarder on the child DNS server.

back to the top

Additional query words: win2000hotnet

Keywords: kbproductlink kbdns kbenv kbhowto kbhowtomaster kbnetwork KB255248

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.