DisableNSRecordsAutoCreation with Dnscmd

This post explains how to restrict automatic NS resource record registration in Windows Server DNS using Dnscmd. This prevents Windows Server DNS to automatically create NS records for zones that it hosts on the server.

This registry key restricts the DNS server to create name server resource records (NS records) automatically while loading it’s DNS zones. By default the name server automates the creation of name server resource records upon loading its zones.

If the registry value is set to 1, the DNS server is restricted from registering NS resource records for authoritative zones. Also existing Name server (NS) records for the authoritative zones that are located on the DNS server are deleted automatically.

Enable DisableNSRecordsAutoCreation with Dnscmd

To enable DisableNSRecordsAutoCreation on the command line use the following command:

Dnscmd /config /DisableNSRecordsAutoCreation 1

Protip: enabling this DisableNSRecordsAutoCreation setting disables the auto creation of NS records zones that it hosts.

When you just want to know the current status of the setting, run:

Dnscmd /info /DisableNSRecordsAutoCreation

And you can always disable it: Dnscmd /config /DisableNSRecordsAutoCreation 0


Did this post helped you solve a problem? Or dit you find it interesting? Support Sysadmins of the North with a direct donation via Paypal of by bank wire transfer IBAN: NL31 ABNA 0432217258 (Jan Reilink). Just $ 5,- or € 5,- is more than enough, thanks!

Support SAOTN.ORG


217 views

Leave a Reply

Your email address will not be published. Required fields are marked *