Alert generating rule for Active Directory Integration.
You can configure the DNS Server service to use Active Directory Domain Services (AD DS) to store zone data. This makes it possible for the DNS server to rely on directory replication, which enhances security, reliability, and ease of administration.
The DNS server could not load the records for a DNS name found in an Active Directory integrated zone.
Change name-checking settings
The DNS server can be configured to permit names that contain characters that are not allowed by Domain Name System (DNS) standards in RFC 1123, including multibyte characters. This error indicates that a DNS name in an Active Directory Domain Services (AD DS)-integrated zone contains characters that are not allowed by the DNS server settings.
To perform this procedure, you must have membership in Administrators, or you must have been delegated the appropriate authority.
To correct a DNS name that contains unsupported characters:
1.On the DNS server, start Server Manager. To start Server Manager, click Start, click Administrative Tools, and then click Server Manager.
2.In the console tree, expand Roles, expand DNS Server, and then expand DNS.
3.Right-click the DNS server, click Properties, and then click the Advanced tab.
4.In the Name checking list, note the current setting, and then click All Names.
5.In the console tree, right-click the DNS server, click All Tasks, and then click Restart.
6.When the server has restarted and the items that had been blocked appear in Server Manager, right-click the items, and then click Delete.
7.Right-click the DNS server, click Properties, and then click the Advanced tab.
8.In the Name checking list, click the setting that had been changed in step 4.
http://technet.microsoft.com/en-us/library/dd349585(v=ws.10).aspx
| Target | Microsoft.Windows.DNSServer.2016.Server | ||
| Category | Alert | ||
| Enabled | True | ||
| Alert Generate | True | ||
| Alert Severity | Error | ||
| Alert Priority | Normal | ||
| Remotable | True | ||
| Alert Message |
| ||
| Event Log | DNS Server |
| ID | Module Type | TypeId | RunAs |
|---|---|---|---|
| DS | DataSource | Microsoft.Windows.EventProvider | Default |
| Alert | WriteAction | System.Health.GenerateAlert | Default |
Home
ENU <Rule ID="Microsoft.Windows.DNSServer.2016.ADI.LoadFailed" Enabled="true" Target="Microsoft.Windows.DNSServer.2016.Server" ConfirmDelivery="true" Remotable="true" Priority="Normal" DiscardLevel="100">
<Category>Alert</Category>
<DataSources>
<DataSource ID="DS" TypeID="Windows!Microsoft.Windows.EventProvider">
<ComputerName>$Target/Host/Property[Type="Windows!Microsoft.Windows.Computer"]/NetworkName$</ComputerName>
<LogName>DNS Server</LogName>
<Expression>
<SimpleExpression>
<ValueExpression>
<XPathQuery Type="UnsignedInteger">EventDisplayNumber</XPathQuery>
</ValueExpression>
<Operator>Equal</Operator>
<ValueExpression>
<Value Type="UnsignedInteger">4006</Value>
</ValueExpression>
</SimpleExpression>
</Expression>
</DataSource>
</DataSources>
<WriteActions>
<WriteAction ID="Alert" TypeID="Health!System.Health.GenerateAlert">
<Priority>1</Priority>
<Severity>2</Severity>
<AlertOwner/>
<AlertMessageId>$MPElement[Name="Microsoft.Windows.DNSServer.2016.ADI.LoadFailed.AlertMessage"]$</AlertMessageId>
<AlertParameters>
<AlertParameter1>$Data/EventDisplayNumber$</AlertParameter1>
<AlertParameter2>$Data/EventSourceName$</AlertParameter2>
<AlertParameter3>$Data/Channel$</AlertParameter3>
<AlertParameter4>$Data/EventDescription$</AlertParameter4>
</AlertParameters>
<Suppression>
<SuppressionValue>$Data/LoggingComputer$</SuppressionValue>
</Suppression>
<Custom1/>
<Custom2/>
<Custom3/>
<Custom4/>
<Custom5/>
<Custom6/>
<Custom7/>
<Custom8/>
<Custom9/>
<Custom10/>
</WriteAction>
</WriteActions>
</Rule>