Skip to content
Tech Shizz Logo

An Engineers Blog

  • TechShizz
  • blog

Configuring DNSSEC in Active Directory DNS

Posted on February 23, 2021 By rich No Comments on Configuring DNSSEC in Active Directory DNS

Aim: To enable DNSSEC on an Active Directory Intergrated zone

1.Go to DNS Manager > Right click on Zone > DNSSEC > Sign the Zone 

2. Select the default settings option > click next.

3.Go back to DNS Manager > Right click zone > DNSSEC > Properties

4. Trust Anchor Tab > Click the checkbox “Enable the destination of trust anchors for this zone” > Click Apply/OK.

5. Click yes on this prompt

6. And OK on this prompt 

7. Go to Group Policy Manager > Create / Amend a Policy and configure the following:

Computer Configuration > Policies > Windows Settings > Name Resolution Policy.

Enter you domain and check “Enable DNCSEC in this rule” and “Require DNS clients to check that name and address data has been validated by the DNS server”. Remember to APPLY the policy. 

 

8. To test, GPUpdate /force and reboot.

Run netsh namespace show policy

This will verify that DNSSEC is enabled.

Post navigation

❮ Previous Post: HTTP Error 503 when Single Sin On redirecting to ADFS Server After Re-Enabling Single Sign On
Next Post: Connecting to and Configuring Nano Servers ❯

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors

Subscribe to our newsletter!

Recent Posts

  • How to implement a lightning-fast ransomware playbook
  • How to achieve defence in depth in your business
  • How to implement a SecOps team phishing response plan
  • How to block an Office 365 Sign-in correctly
  • Microsoft finally patched serious Exchange 0-day over a month old!

Recent Comments

    Archives

    • November 2022
    • July 2021
    • March 2021
    • February 2021

    Categories

    • Cyber Security
    • Uncategorized

    Meta

    • Log in
    • Entries feed
    • Comments feed
    • WordPress.org

    Copyright © 2023 .

    Theme: Oceanly News Dark by ScriptsTown