How to disable dynamic Kerberos SRV record or bloc...

THE GAME HAS CHANGED

Introducing Infoblox Universal DDI Management^TM

Watch the launch to discover the new era of management for critical network services. Watch Now

Infoblox

Core Network Services

NIOS DNS DHCP IPAM

How to disable dynamic Kerberos SRV record or bloc...

NIOS DNS DHCP IPAM

Reply

Topic Options

Subscribe to RSS Feed

Mark Topic as New

Mark Topic as Read

Float this Topic for Current User

Bookmark

Subscribe

Printer Friendly Page

All forum topics

Previous Topic

Next Topic

How to disable dynamic Kerberos SRV record or block dynamic updates

Options

Mark as New

Bookmark

Subscribe

Subscribe to RSS Feed

Permalink

Print

Report Inappropriate Content

RYork
New Member

Posts: 1

‎02-23-2020 08:05 AM

1997 0

We have a Read Only Domain Controller in our domain used for LDAP integrations. With the OS hardening that has been done, it does not support Kerberos authentications. The primary Domain Controller auto updates the _kerberos SRV record hourly, so it is dynamically added back after we delete the record. We have been unable to determine how to stop the auto updates from the DCs, so we are receiving a significant number of kerberos auth failures in our logs.

Is there a way to leave the SRV records in DNS, but set the record inactive or ignore/block the updates from the domain controller?

Labels:

DNS

Microsoft

Reply

0 Kudos

All forum topics

Previous Topic

Next Topic

Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Showing results for

Search instead for

Did you mean:

Recommended for You

Latest Annoucements

Exciting New Release: NIOS 9.0.4 is Here!

Announcing Infoblox PayGo for Cloud Marketplaces

PRODUCTS

SOLUTIONS

COMPANY

SUPPORT

© Infoblox. All rights reserved.

Feedback

Terms & Conditions

Legal

Privacy Policy