JSI Tip 6638. How do I verify the SRV locator resource records for a Windows Server 2003 domain controller?

The SRV record is a DNS resource record that is used to identify computers that host specific services, and is how domain controllers are located.

You can use DNS Manager on a domain controller that hosts DNS to verify that the appropriate zones and resource records are created for each DNS zone. Active Directory creates its' SRV records in the following folders:

/Forward Lookup Zones/_msdcs
/dc/_sites/Default-First-Site-Name/_tcp
/Forward Lookup Zones/_msdcs
/dc/_tcp

In the above locations, a SRV record should exist for the _kerberos and _ldap services.

NOTE: For a non-Microsoft DNS server, open the %SystemRoot%System32ConfigNetlogon.dns file in Notepad and verify that the first record is _ldap._tcp.

You can use the Nslookup tool:

1. On your DNS server, open a CMD prompt.

2. Type nslookup and press Enter.

3. Type set type=all and press Enter.

4. Type _ldap._tcp.dc._msdcs. and press Enter.

Nslookup returns one or more SRV records like:

Server:  jsi001.jsiinc.comAddress:  192.168.0.1_ldap._tcp.dc._msdcs.jsiinc.com SRV service location:          priority       = 0          weight         = 100          port           = 389          svr hostname   = jsi001.jsiinc.comjsi001.jsiinc.com       internet address = 192.168.0.1

NOTE: If you have multiple network adapters, make sure that an internal adapter is first in the Binding Order.