This post explains how to restrict automatic NS resource record registration in Windows Server DNS using
Dnscmd. This prevents Windows Server DNS to automatically create NS records for zones that it hosts on the server.
To enable DisableNSRecordsAutoCreation on the command line use the following command:
Dnscmd /config /DisableNSRecordsAutoCreation 1
Pro tip: enabling this DisableNSRecordsAutoCreation setting disables the auto creation of NS records zones that it hosts.
When you just want to know the current status of the setting, run:
Dnscmd /info /DisableNSRecordsAutoCreation
And you can always disable it:
Dnscmd /config /DisableNSRecordsAutoCreation 0
If you want to step in to help me cover the costs for running this website, that would be awesome. Just use this link to donate a cup of coffee ($5 USD for example). And please share the love and help others make use of this website. Thank you very much!
My name is Jan. I am not a hacker, coder, developer, programmer or guru. I am merely a system administrator, doing my daily thing at Vevida in the Netherlands. With over 15 years of experience, my specialties include Windows Server, IIS, Linux (CentOS, Debian), security, PHP, websites & optimization.
PowerShell blacklist check script: find an IP address’ blacklist status & reputation
WMI/netsh to add DNS servers on network adapters
Open DNS Resolver Project
Check IP address blacklist status in Bash
Windows Server 2019 – now available in preview
Windows Server 2016 on Hyper-V stuck at stopping