Sun Microsystems, Inc.  Sun System Handbook - ISO 4.1 October 2012 Internal/Partner Edition
   Home | Current Systems | Former STK Products | EOL Systems | Components | General Info | Search | Feedback

Asset ID: 1-71-1004157.1
Update Date:2012-03-13
Keywords:
Solution Type  Technical Instruction Sure

Solution  1004157.1 :   Sun StorageTek[TM] 5000 Series NAS: DNS records required for locating and joining a Windows Domain via DNS (Active Directory)  

Related Items 
    

  • Sun Storage 5210 NAS Appliance
    •  
  • Sun Storage 5220 NAS Appliance
    •  
  • Sun Storage 5320 NAS Cluster
    •  
  • Sun Storage 5310 NAS Appliance
    •  
  • Sun Storage 5320 NAS Appliance
    •  
  • Sun Storage 5320 NAS Gateway
    •  
  • Sun Storage 5310 NAS Gateway System
    •  
Related Categories 
    

  • PLA-Support>Sun Systems>DISK>NAS>SN-DK: SE5xxx NAS
    •  
  • .Old GCS Categories>Sun Microsystems>Storage - Disk>Network Attached Storage
    •  

PreviouslyPublishedAs
205770 


Description
This document describes the DNS records required to join a Windows domain. Active Directory requires that resources be located by DNS rather than NetBIOS.
These required DNS records are not unique to the NAS, but are frequently found to be misconfigured.


Steps to Follow
StorageTek[TM] 5000 Series NAS: DNS records required for locating and joining a Windows Domain via DNS (Active Directory)
In order to be properly integrated with Active Directory, the NAS must locate Windows Domain resources via DNS. If this lookup fails, the NAS will attempts to locate the Domain Controller via NetBIOS, and will not have full Active Directory functionality.


Locating the Domain resources via DNS is accomplished primarily using SRV records. An SRV record, defined in  RFC 2082 is a type of DNS record that specifies the location of available services. Typically, this will be a Windows 2000 or Windows 2003 server. Many DNS server solutions support these records, but many find it easiest to use Windows DNS servers for this purpose, as the Active Directory support is integrated, and all required DNS records are automatically created. In order to join the Domain via DNS, all Active Directory configuration settings must be configured. See <Document: 1009920.1> for details on how to configure these.


It is not required for the NAS to register with Dynamic DNS, but it must be possible to authenticate (if necessary) and to perform lookups. Using DNS to locate and join the domain does not remove the requirement for NetBIOS communication, if present. In order for the NAS to function in an environment entirely without NetBIOS, it must be running at least OS version 4.21M1. See <Document: 1004156.1> for more information on this configuration.


The following DNS records are required for a properly functioning Active Directory environment. Note that the first four are the most critical to the NAS AD integration:


Record: _ldap._tcp.pdc._msdcs.<DnsDomainName>
Type: SRV
Description: This record allows clients to locate the Primary Domain Controller (PDC).


Record: _kerberos._tcp.dc._msdcs.<DnsDomainName>
Type: SRV
Description: This record allows clients to locate all Domain Controllers.


Record: _ldap._tcp.dc._msdcs.<DnsDomainName>
Type: SRV
Description: This record allows clients to locate the Kerberos Key Distribution  Center (KDC).


Record: <DomainControllerFQDN>
Type: A
Description: This allow the IP addresses of the Domain Controllers to be  resolved.


Record: _ldap._tcp.gc._msdcs.<DnsForestName>
Description: This record allows clients to locate the Global Catalog server.


Record: GcIpAddress
Type: A
Description: This record also allows clients to resolve the IP address of the  Global Catalog server..


Record: <DsaGuide>._msdcs.<DnsForestName>
Type: CNAME
Description: This record is an alias that enables a client to locate any domain  controller in the forest by looking up an A record.


Product
Sun StorageTek 5320 NAS Gateway/Cluster System

Sun StorageTek 5320 NAS Appliance

Sun StorageTek 5320

Sun StorageTek 5310 NAS Gateway/Cluster System

Sun StorageTek 5310 NAS Gateway System

Sun StorageTek 5310 NAS Appliance

Sun StorageTek 5220 NAS Appliance

Sun StorageTek 5210 NAS Appliance


 Internal Comments

 This document contains normalized content and is managed by the the Domain Lead(s) of the respective domains. To notify content owners of a knowledge gap contained in this document, and/or prior to updating this document, please contact the domain engineers that are managing this document via the “Document Feedback” alias(es) listed below:



 [email protected]



 The Knowledge Work Queue for this article is KNO-STO-NAS.







 NAS, active, directory, CIFS, DNS, audited

 Previously Published As

 89221



 Change History

 Date: 2010-04-08

 User Name: 79977

 Action: Currency check

 Comment: Verified as still current, CL [email protected]

 Date: 2007-09-18

 User Name: 7058

 Action: Approved

 Comment: Trademarked. Spell ck OK.

 Interdependent docs all in final review - to publish today.

 Spell ck OK.

 OK to publish.

 Version: 3

 Date: 2007-09-14

 User Name: 7058

 Action: Accept

 Comment: 

 Version: 0



 Product_uuid

 ef8d4cb2-9cd6-11da-85b4-080020a9ed93 | Sun StorageTek 5320 NAS Gateway/Cluster System





Attachments

This solution has no attachment


















       

Copyright © 2012 Sun Microsystems, Inc.  All rights reserved.

 Feedback