Learn How We Can Help You Keep Teleworkers Protected During the COVID-19 Crisis

DNS DHCP IPAM

Reply
Highlighted
Accepted Solution

How to secure Windows Dynamic Updates

Techie
Posts: 2
5005     0

Hi,

 

We implemented Infoblox requiring GSS-TSIG. We only have Windows clients that support it.

When a client performs a dynamic registration we see the following pattern:

 

- Normal DNS update -> fail -> error in infoblox named syslogging

- Client authenticates using TSIG

- Client performing authenticated update -> succeed

 

This happens all the time which gives a very clouded ERROR log in syslogging.

 

How can we force Windows servers to perform TSIG only, or at least try it first before falling back to normal DNS registration?

Highlighted

Re: How to secure Windows Dynamic Updates

Techie
Posts: 2
5006     0

Solved my own problem. Found a GPO to configure it:

 

Computer Configuration > Administrative Templates > Network > DNS Client

 

Name: Update security level
Set to: Only Secure

Highlighted

Re: How to secure Windows Dynamic Updates

[ Edited ]
Not applicable
Posts: 1
5006     0

Can anyone here help me with the error your windows will expire soon? I am getting this error again and again.

Showing results for 
Search instead for 
Do you mean 

Recommended for You