This post explains how to restrict automatic NS resource record registration in Windows Server DNS using
Dnscmd. This prevents Windows Server DNS to automatically create NS records for zones that it hosts on the server.
This registry key restricts the DNS server to create name server resource records (NS records) automatically while loading it’s DNS zones. By default the name server automates the creation of name server resource records upon loading its zones.
If the registry value is set to 1, the DNS server is restricted from registering NS resource records for authoritative zones. Also existing Name server (NS) records for the authoritative zones that are located on the DNS server are deleted automatically.
To enable DisableNSRecordsAutoCreation on the command line use the following command:
Dnscmd /config /DisableNSRecordsAutoCreation 1
Protip: enabling this DisableNSRecordsAutoCreation setting disables the auto creation of NS records zones that it hosts.
When you just want to know the current status of the setting, run:
Dnscmd /info /DisableNSRecordsAutoCreation
And you can always disable it:
Dnscmd /config /DisableNSRecordsAutoCreation 0
My name is Jan. I am not a hacker, coder, developer, programmer or guru. I am merely a system administrator, doing my daily thing at Vevida in the Netherlands. With over 15 years of experience, my specialties include Windows Server, IIS, Linux (CentOS, Debian), security, PHP, WordPress, websites & optimization.
Want to support me and donate? Use this link: https://paypal.me/jreilink.