DNS error synchronization MS_RPC_SCMR_DNS_STATUS

reseau

Hello,

We have synchronization problems between our Microsoft and Infoblox servers, in both directions nothing happens during any modification.

We have our dedicated user for this service in the DNSAdmins group with special permissions but not full control because it is too permissive for our security service.

Ports 135 and 445 are open on the firewall, no trace of blocked flows inside.

If I rely on the Infoblox documentation, DHCP uses simple RPC requests, while DNS is apparently more complicated than that.

However, I don't see any mention of WMI or DCOM authorization in the documentation.

But, in a company with a huge amount of security recommendations, it is difficult to find the source of the problem without knowing the real Infoblox DNS synchronization process.

Today, i need to know how DNS synchronization works between Infoblox and a Microsoft server specifically.

Does it use WMI? DCOM? If anyone tell me that Infoblox uses it, then the source of the problem may be there.

Thanks,

nic w

Typically if your account provided to Infoblox to manage MS servers doesn't have adequate DNS perms, you'll see MS_RPC_SCMR_DNS_STATUS logs or sometimes "Could not open RPC interface with RPC over Named Pipe"

Hope this answers your question. Support won't assist in troubleshooting without correct perms assigned as those are the stated requirements to get it to work. Did you take a look at the least privilege setup in our KB?

darif159cris

Hi Nic,

Thanks so much for the detailed explanation—this really helps clarify the issue. I hadn’t looked closely at the least privilege setup in the KB yet, but I’ll definitely review that now. Appreciate the heads-up about the permissions and the support limitations; it’s good to know exactly where to focus troubleshooting efforts.

Thanks again for your support!

Best regards,

Darif