Escolar Documentos
Profissional Documentos
Cultura Documentos
DHCPStepbyStepGuide:DemonstrateDHCPNameProtectioninaTestLab
In this guide
This stepbystep guide contains an introduction to Name Protection and instructions for setting up a test lab using one DHCP server and three client computers.
Two client computers have windows installed and the other client computer has a thirdparty operating system installed.
Important
The following instructions are for configuring a test lab using the minimum number of computers. Individual computers are needed to separate the services
provided on the network and to clearly show the desired functionality. This configuration is not designed to reflect best practices, nor does it reflect a
recommended configuration for a production network. The configuration, including IP addresses and all other configuration parameters, is designed only to
work on a separate test lab network.
Scenario overview
In this test lab, Name Protection is configured on a computer running Windows Server2008R2 that has the DHCP Server service installed. Three DHCP client
computers are also configured: one client computer running the Windows7 operating system with the DHCP Client service running, and two client
computers running a thirdparty operating system. A computer running Windows Server2008R2 is also used in the test lab as a domain controller and DNS
server. Although Name Protection supports both IPv4 and IPv6 networks, this document details the configuration for IPv4 only to reduce the complexity of the
test lab and demonstrate the feature.
Having obtained an IP address from DHCP Server 1, Windows DHCP Client 1, with the name enggmachine1.contoso.com, is assigned an A record by
registering with DNS. NonWindows DHCP Client 2, with the name enggmachine2.contoso.com, also obtains an IP address from DHCP Server 1 and is
assigned an A record and a DHCID record by registering with DNS. Name Protection is demonstrated in the lab when nonWindows DHCP Client 3 attempts
DNS registration with an already used FQDN. Although DHCP client 3 has obtained an IP address, the DNS registration is denied.
Software requirements
The following are required components of the test lab:
https://technet.microsoft.com/enus/library/ee404786%28v=ws.10%29.aspx?f=255&MSPPError=2147217396
1/9
8/19/2016
DHCPStepbyStepGuide:DemonstrateDHCPNameProtectioninaTestLab
The product disc for Windows Server2008R2.
The product disc for Windows7.
Configure DC1
DC1 is a computer running Windows Server2008R2, which provides the following services:
A domain controller for the Contoso.com AD DS domain.
A DNS server for the Contoso.com DNS domain.
To configure DC1, complete the following tasks:
Install the operating system.
Configure Transmission Control Protocol/Internet Protocol TCP/IP.
Install AD DS and DNS.
Create a user account and group in AD DS.
The following sections explain these steps in detail.
2/9
8/19/2016
1. Click Start, click Control Panel, and then doubleclick Network and Internet, click Network and Sharing Center, and then click Change Adapter
Settings.
2. Rightclick Local Area Connection, and then click Properties.
3. Click Internet Protocol Version 4 TCP/IPv4, and then click Properties.
4. Select Use the following IP address. Type 172.16.1.1 next to IP address and 255.255.255.0 next to Subnet mask.
5. Verify that Preferred DNS server is blank.
6. Click OK, click Close, and then close Network Connections.
https://technet.microsoft.com/enus/library/ee404786%28v=ws.10%29.aspx?f=255&MSPPError=2147217396
3/9
8/19/2016
DHCPStepbyStepGuide:DemonstrateDHCPNameProtectioninaTestLab
6. Clear the User must change password at next logon check box, and select the Password never expires check box.
7. Click Next, and then click Finish.
8. Leave the AD DS Users and Computers console open for the following procedure.
https://technet.microsoft.com/enus/library/ee404786%28v=ws.10%29.aspx?f=255&MSPPError=2147217396
4/9
8/19/2016
DHCPStepbyStepGuide:DemonstrateDHCPNameProtectioninaTestLab
5. On the Specify IPv4 DNS Server Settings page, verify that contoso.com is listed under Parent domain.
6. Type 172.16.1.1 under Preferred DNS server IP address, and then click Validate. Verify that the result returned is valid, and then click Next.
7. On the Specify WINS Server Settings page, accept the default setting of WINS is not required on this network, and then click Next.
8. On the Add or Edit DHCP Scopes page, click Add.
9. In the Add Scope dialog box, type SS Scope next to Scope Name. Next to Starting IP Address, type 172.16.1.4, next to Ending IP Address, type
172.16.1.204, and next to Subnet Mask, type 255.255.255.0.
10. Select the Activate this scope check box, click OK, and then click Next.
11. On the Configure DHCPv6 Stateless Mode page, select Disable DHCPv6 stateless mode for this server, and then click Next.
12. On the Authorize DHCP Server page, select Use current credentials. Verify that CONTOSO\user1 is displayed next to Username, and then click
Next.
13. On the Confirm Installation Selections page, click Install.
14. Verify the installation was successful, and then click Close.
https://technet.microsoft.com/enus/library/ee404786%28v=ws.10%29.aspx?f=255&MSPPError=2147217396
Configure the Windowsbased DHCP client
5/9
8/19/2016
DHCPStepbyStepGuide:DemonstrateDHCPNameProtectioninaTestLab
https://technet.microsoft.com/enus/library/ee404786%28v=ws.10%29.aspx?f=255&MSPPError=2147217396
6/9
8/19/2016
DHCPStepbyStepGuide:DemonstrateDHCPNameProtectioninaTestLab
5. Click More, and then, in Primary DNS suffix of this computer, type Contoso.com.
6. Click OK two times.
7. When prompted for a user name and password, type the user name and password for the User1 account, and then click OK.
8. When you see a dialog box that welcomes you to the Contoso.com domain, click OK.
9. When you see a dialog box that tells you that you must restart the computer to apply changes, click OK.
10. In the System Properties dialog box, click Close.
11. In the dialog box that prompts you to restart the computer, click Restart the computer now.
https://technet.microsoft.com/enus/library/ee404786%28v=ws.10%29.aspx?f=255&MSPPError=2147217396
7/9
8/19/2016
DHCPStepbyStepGuide:DemonstrateDHCPNameProtectioninaTestLab
DHCP Client 3 tries to register with the same FQDN as DHCP Client 2, but cannot because there are already DNS records for both DHCP Client 1 and
DHCP Client 2 available in the DNS server. Although it did obtain a DHCP address from DHCP Server 1, DHCP client 3 is unable to add an entry in
DNS.
Appendix
This appendix helps you with troubleshooting techniques and the setting of optional features in Windows Server2008R2 and Windows7.
1340 EVENT_SERVER_DNSDHCID_FAIL
The DNS registration for DHCPv4 Client IP address %1 , FQDN %2, and DHCID %3 is denied as there is probably an existing client with same FQDN
already registered with DNS.
1340 EVENT_SERVER_DNSDHCID_FAIL
The DNS registration for DHCPv6 Client IPv6 address %1 , FQDN %2, and DHCID %3 is denied as there is probably an existing client with same FQDN
already registered with DNS.
https://technet.microsoft.com/enus/library/ee404786%28v=ws.10%29.aspx?f=255&MSPPError=2147217396
8/9
8/19/2016
DHCPStepbyStepGuide:DemonstrateDHCPNameProtectioninaTestLab
Community Additions
2016 Microsoft
https://technet.microsoft.com/enus/library/ee404786%28v=ws.10%29.aspx?f=255&MSPPError=2147217396
9/9