register name into windows dns

The DNS on our network is managed by windows domain controllers. I have been managing entries for Linux machines manually but with IPv6 it's getting painful. Is there a daemon or script that can do this for me? Google hasn't given me any answers yet... Thanks James

James Harper writes:
The DNS on our network is managed by windows domain controllers. I have been managing entries for Linux machines manually but with IPv6 it's getting painful. Is there a daemon or script that can do this for me? Google hasn't given me any answers yet...
Since samba 4 has the same... feature, my plan was just to have two domains. The "real" one managed by nsd and a subdomain that AD is in charge of. AIUI you can't do that, though, because AD basically doesn't let you change the domain without an inordinate amount of pissing about (like, readding every single machine account by physically walking over to the associated machine). Other than that, I dunno. Try ##windows-server on Freenode.

On 24/06/13 09:40, James Harper wrote:
The DNS on our network is managed by windows domain controllers. I have been managing entries for Linux machines manually but with IPv6 it's getting painful.
Is there a daemon or script that can do this for me? Google hasn't given me any answers yet...
Just successfully used `nsupdate` for this purpose. On the Windows DNS Manager, right-click the zone, hit Properties, and allow “nonsecure and secure” updates. Then, I could just use `nsupdate` like so from my Linux box: $ nsupdate
server drinian update add blah.lolcats.local. 120 aaaa 2001:db8::1 send quit
Which then appeared on the Windows zone file.

On 24/06/13 8:54 PM, Jeremy Visser wrote:
On 24/06/13 09:40, James Harper wrote:
The DNS on our network is managed by windows domain controllers. I have been managing entries for Linux machines manually but with IPv6 it's getting painful.
Is there a daemon or script that can do this for me? Google hasn't given me any answers yet... Just successfully used `nsupdate` for this purpose.
On the Windows DNS Manager, right-click the zone, hit Properties, and allow “nonsecure and secure” updates.
Then, I could just use `nsupdate` like so from my Linux box:
$ nsupdate
server drinian update add blah.lolcats.local. 120 aaaa 2001:db8::1 send quit
Which then appeared on the Windows zone file. Yep that rings a bell. I know I had done that in the past, but it's been years and I had forgotten, but you've just refreshed my memory. Yep that should work like a charm. :)
-- 73 de Tony VK3JED/VK3IRL http://vkradio.com

On 24/06/13 8:54 PM, Jeremy Visser wrote:
On 24/06/13 09:40, James Harper wrote:
The DNS on our network is managed by windows domain controllers. I have been managing entries for Linux machines manually but with IPv6 it's getting painful.
Is there a daemon or script that can do this for me? Google hasn't given me any answers yet... Just successfully used `nsupdate` for this purpose.
On the Windows DNS Manager, right-click the zone, hit Properties, and allow "nonsecure and secure" updates.
Then, I could just use `nsupdate` like so from my Linux box:
$ nsupdate
server drinian update add blah.lolcats.local. 120 aaaa 2001:db8::1 send quit
Which then appeared on the Windows zone file. Yep that rings a bell. I know I had done that in the past, but it's been years and I had forgotten, but you've just refreshed my memory. Yep that should work like a charm. :)
I'm sure it will work, but turning off the option that protects your DNS from unsecured updates hardly seems like a good idea... James

On 24/06/13 8:54 PM, Jeremy Visser wrote:
On 24/06/13 09:40, James Harper wrote:
The DNS on our network is managed by windows domain controllers. I have been managing entries for Linux machines manually but with IPv6 it's getting painful.
Is there a daemon or script that can do this for me? Google hasn't given me any answers yet... Just successfully used `nsupdate` for this purpose.
On the Windows DNS Manager, right-click the zone, hit Properties, and allow "nonsecure and secure" updates.
Then, I could just use `nsupdate` like so from my Linux box:
$ nsupdate
server drinian update add blah.lolcats.local. 120 aaaa 2001:db8::1 send quit
Which then appeared on the Windows zone file. Yep that rings a bell. I know I had done that in the past, but it's been years and I had forgotten, but you've just refreshed my memory. Yep that should work like a charm. :)
I'm sure it will work, but turning off the option that protects your DNS from unsecured updates hardly seems like a good idea...
Hmm... it seems that nsupdate actually does support the gss-tsig authentication that windows likes, so the following appears to work: # kinit <username> <password> # nsupdate
server dnsserver gsstsig update add host.domain. 86400 IN A 1.2.3.4 send quit # nslookup host.domain Name: host.domain Address: 1.2.3.4 (obviously that's the abridged version, but the commands are what I typed)
Further investigation required... Thanks for the hint! James
participants (4)
-
James Harper
-
Jeremy Visser
-
Tony Langdon
-
trentbuck@gmail.com