Active Directory Logical Structure |
Windows 2000 DNS server supports the dynamic update protocol. This protocol is a standard that allows hosts to dynamically register their names in the DNS database, thus reducing administrative costs. When DNS zones are stored in Active Directory, DNS is configured by default to accept dynamic updates. The specification for dynamic update protocol is RFC 2136.
Secure dynamic update is a Windows 2000 feature that provides the additional benefit of making it possible to authenticate clients that dynamically register their host names in DNS. The server does not perform a dynamic update on behalf of a client unless it has authenticated the client in Active Directory and determined that the client has appropriate permissions to perform the dynamic update.
Note
Secure dynamic update is available only with Active Directory–integrated zones.
For more information about dynamic updates and secure dynamic updates, see Windows 2000 Server Help and "Windows 2000 DNS" in the TCP/IP Core Networking Guide.