-1

I'm unable to create a A record for a server, SERVER1 . The record does not exist. When i try to create it I recieve the message "The host record SERVER1.xxx.yyy cannot be created. Access is denied" . However I'm able to create A records on the same zone, for example SERVER2 was created sucessfully.

I've checked permissions, but they're ok since I'm able to create other records on the same zone.

This is a Windows Server 2012R2 domain btw. Any ideas?

Improve this question
3
  • I've checked permissions, but they're ok since I'm able to create other records on the same zone. that isn't a valid test. By default, any user can create a DNS resource record. You should check if the SERVER1 record had been previously created and is now dnsTombstoned. Adsiedit can be used to view the dnsTombstoned records.
    – Greg Askew
    Nov 10 at 16:56
  • I've tested and that specific record does not show in tombstone records. I created one and delete it afterwards to see if the command works, and it shows. I'm still unable to recreate that SERVER1 record.
    – biocoma
    Nov 13 at 12:09
  • <br/> PS C:\> Get-ADObject -filter 'dnsTombstoned -eq $true' -SearchBase 'dc=xxx.yyyy,CN=MicrosoftDNS,DC=DomainDNSZones,D C=xxx,DC=yyy' -Properties dNSTombstoned,name,distinguishedName,whenchanged DistinguishedName : DC=DNSTOMBSTONE-TEST,DC=xxx.yyy,CN=MicrosoftDNS,DC=DomainDnsZones,DC=xxx,DC=yyyy dNSTombstoned : True Name : DNSTOMBSTONE-TEST ObjectClass : dnsNode ObjectGUID : da86429f-ee18-4aca-a52d-d3b619802de3 whenchanged : 13/11/2023 12:06:14
    – biocoma
    Nov 13 at 12:12

0

Reset to default

You must log in to answer this question.

Browse other questions tagged .