Sun ZFS Storage 7420
 
Oracle ZFS Storage ZS5-2
 
Sun Storage 7110 Unified Storage System
 
Oracle ZFS Storage ZS3-2
 
Oracle ZFS Storage ZS4-4
 
Sun Storage 7210 Unified Storage System
 
Oracle ZFS Storage Appliance Racked System ZS5-4
 
Sun Storage 7410 Unified Storage System
 
Oracle ZFS Storage ZS5-4
 
Oracle ZFS Storage ZS3-4
 
Sun Storage 7310 Unified Storage System
 
Sun ZFS Storage 7120
 
Oracle ZFS Storage Appliance Racked System ZS5-2
 
Oracle ZFS Storage Appliance Racked System ZS4-4
 
Sun ZFS Storage 7320
 
Oracle ZFS Storage ZS3-BA
 

PLA-Support>Sun Systems>DISK>ZFS Storage>SN-DK: 7xxx NAS
 
_Old GCS Categories>Sun Microsystems>Storage - Disk>Unified Storage
 

In this Document

Goal

Solution

References

Created from <SR 3-3740498461>

Applies to:

Goal

This document describes the DNS records required to join the ZFS Storage Appliance to an Active Directory domain. Active Directory requires that resources be located by DNS records.

These required DNS records are not unique to the NAS, but are often found to be mis-configured.

Solution

In order to integrate with Active Directory, the ZFSSA must locate Windows Domain resources via DNS.

Locating the Domain resources via DNS is accomplished primarily using SRV records.  An SRV record, defined in RFC 2052 is a type of DNS record that specifies the location of available services. Typically, this will be a Windows 2003 or Windows 2008 server.

Many DNS server solutions support these records, but many find it easiest to use Windows DNS servers for this purpose, as the Active Directory support is integrated, and all required DNS records are automatically created when DNS is installed on an AD Domain Controller.

The following DNS records are required for a properly functioning Active Directory environment.

Note that the first six are the most critical to the ZFSSA AD integration:

Record: Host record for the appliance
Type: A
Description: Standard DNS host entry to resolve host to IP address

Record: Reverse record for the appliance
Type: PTR
Description: Standard DNS reverse lookup entry to resolve IP address to appliance hostname.

Record: _ldap._tcp.pdc._msdcs.<DnsDomainName>
Type: SRV
Description: This record allows clients to locate the Primary Domain Controller (PDC).

Record: _kerberos._tcp.dc._msdcs.<DnsDomainName>
Type: SRV
Description: This record allows clients to locate all Domain Controllers.

Record: _ldap._tcp.dc._msdcs.<DnsDomainName>
Type: SRV
Description: This record allows clients to locate the Kerberos Key Distribution Center (KDC).

Record: <DomainControllerFQDN>
Type: A
Description: This allow the IP addresses of the Domain Controllers to be resolved.

Record: _ldap._tcp.gc._msdcs.<DnsForestName>
Description: This record allows clients to locate the Global Catalog server.

Record: GcIpAddress
Type: A
Description: This record also allows clients to resolve the IP address of the Global Catalog server..

Record: <DsaGuide>._msdcs.<DnsForestName>
Type: CNAME
Description: This record is an alias that enables a client to locate any domain controller in the forest by looking up an A record.

For more information on verifying the SRV records for a Windows DNS server see MSKB Document #816587.

Back to Document 1402353.1  Sun Storage 7000 Unified Storage System: How to Troubleshoot Active Directory Issues.

Check for relevancy - 10-May-2018

References

This solution has no attachment