WEBVTT

00:00.660 --> 00:07.710
Now when we have lawyers journals manager we can create a nice zone by right clicking forward look zone

00:07.800 --> 00:17.650
and select prime or a zone to create it so we click next to me where we can select replication scope

00:17.650 --> 00:26.400
we select forest level replication score and select also the main level endlessly and I give it a name

00:26.400 --> 00:36.450
like the name which is needed for you or I'll create a test name and this researcher is selective allow

00:36.510 --> 00:46.320
secure dynamic updates so we can allow only secure dynamic updates or secure and unsecure updates and

00:46.380 --> 00:49.800
we can not allow secure updates.

00:49.830 --> 00:58.600
We can see a completion of use zone wizard to just type information and look up.

00:59.760 --> 01:07.100
You can always have a look at that DNS manager if it is here and if all the default records are great

01:07.200 --> 01:14.310
like this time to create secondary forward Look-Up zone to do this right click on the forward lookup

01:14.490 --> 01:28.040
zone click next and select secondary's zone again click next and we have to give it a name like in my

01:28.040 --> 01:43.080
case it is just to dot local again next and on this sport we have to give it a server address so it

01:44.870 --> 01:54.950
should contain an address which gives the primary zone and primary zone will be kept on the DC to server.

01:54.950 --> 01:56.280
Let's pin it.

01:56.330 --> 01:58.900
See if it is available.

01:58.900 --> 02:04.300
So it is available and as 0.02 an IP address.

02:04.460 --> 02:10.190
So that's when the screen and let's invoke commanders invoke command.

02:10.220 --> 02:16.450
We will check if the server has the roll of DNS server.

02:16.830 --> 02:18.590
Let's check it remotely.

02:18.610 --> 02:29.380
We use invoke command then use parameter computer name state the name Lebda CITU in this case and type

02:29.400 --> 02:30.470
credentials.

02:30.470 --> 02:40.160
It will be Lapo install user which has the credentials to install and install the software on the server

02:40.550 --> 02:52.110
and use script block parameter with get Windows feature slash name DNS so this command will check if

02:52.200 --> 03:01.860
the server has got DNS server or so as you can see it doesn't contain DNS Arrau.

03:01.870 --> 03:08.340
So let's install this role with the same command invoke command.

03:08.370 --> 03:20.030
We just change it for install Windows feature name DNS and we also will have to install windows and

03:20.050 --> 03:30.800
DNS management tools and DNS folders please include management tools parameter and include my subfolder

03:30.800 --> 03:32.930
as parameter.

03:33.120 --> 03:35.470
So let's run this command.

03:36.460 --> 03:45.130
It asks for credentials as usual because we need the credentials to run this command and give us the

03:45.130 --> 03:56.320
results of the DNS role is installed on the server remotely with invoke command in power shell as you

03:56.320 --> 04:07.450
can see it has an exit go to of success and restart isn't needed but we will restart this server just

04:07.450 --> 04:08.960
in case.

04:09.170 --> 04:15.400
Restart computers last computer name give it a remote name.

04:15.660 --> 04:19.600
LOPP Leptis in this case Lebda it too.

04:19.840 --> 04:23.940
And we will do it with force parameter.

04:24.160 --> 04:30.850
If some users are logged in on this server it will force the restart.

04:30.910 --> 04:33.980
It gives us an error that access is denied.

04:33.970 --> 04:47.200
So I must state I must type credentials WEP and install a user which has a credential a right to reboot

04:47.290 --> 04:49.010
this remote computer.

04:49.210 --> 05:00.130
So it goes to reboot and we can check if the server is opera's been commensal a real pin with Slash

05:00.610 --> 05:06.680
T which gives a pin command not to finish it.

05:06.730 --> 05:21.700
Real been so many times so ringette as we can see it just up and we can now check if this feature is

05:21.840 --> 05:25.730
installed we'll get a Windows feature command.

05:25.780 --> 05:31.550
And as you can see it is installed on the remote server.

05:31.550 --> 05:41.540
Now let's get to this remote server and check DNS manager to see if we can manage that on the second

05:41.540 --> 05:43.640
server leopardess it to.

05:43.760 --> 05:47.600
So we have to log in with our domain credentials.

05:47.600 --> 05:58.460
In this case it is in STOL user which has the credentials the rights to administer DNS manager will

05:58.490 --> 06:06.100
again and launch DNS manager wire server manager.

06:06.170 --> 06:13.420
So we'll launch it from the left pane where we can find DNS manager.

06:13.610 --> 06:18.480
Select the local server and trum DNS manager.

06:18.690 --> 06:22.370
Here we can check our DNS server.

06:22.640 --> 06:27.530
It has got forwork look up slow in reverse lookup zone.

06:27.530 --> 06:29.810
All we need for administer.

06:29.840 --> 06:41.960
So let's create a primary zone for us to have a possibility to create a secondary zone on Leptis see

06:41.960 --> 06:42.530
one.

06:42.650 --> 06:50.890
So to create a primary zone to create a secondary zone we need to have a primary zone and some others

06:50.930 --> 07:00.100
are created and we created to raise a file which has a DNS extension.

07:00.320 --> 07:11.470
And as you can see as it is not Adey integrated zone it cannot have all these features about security.

07:11.470 --> 07:18.430
So here is the results of our creation that says that this zone is created.

07:18.430 --> 07:30.670
It has got an adult local and now we can continue on our shores to Labadee see one continue Real's creation

07:30.670 --> 07:32.610
of secondary DNS zone.

07:32.620 --> 07:44.050
So here we can type Now the d the IP address of the server which keeps primaries on as you can see it

07:44.350 --> 07:48.660
has got green result and we can create it.

07:49.000 --> 07:58.080
And it appears in our primary lockup zone pain but it is not updated.

07:58.080 --> 07:59.270
Why is that.

07:59.370 --> 08:11.050
Because we have not allowed to to get zone information from the primary zone keeper.

08:11.100 --> 08:15.430
So let's try to update it once more.

08:15.480 --> 08:26.730
And after this we have to go to DC to Lebda to and in Propertius we have to

08:29.680 --> 08:35.950
allow zone transfer to the server which will keep a secondary additional a zone.

08:36.130 --> 08:48.400
So let's add this or we have to here Lapidus the wan and it will be allowed to get transfers from these

08:48.400 --> 08:53.960
primaries zones and we Khaliq apply.

08:56.700 --> 08:57.140
Yes.

08:57.180 --> 09:05.240
Yeah we check once more.

09:05.410 --> 09:06.470
Click OK.

09:11.610 --> 09:21.430
And now we can see that this zone transfers are allowed only to and servers which we have added right

09:21.490 --> 09:21.940
now.

09:21.940 --> 09:25.380
So it is here and it is added now.

09:25.630 --> 09:30.460
This zone transfer is allowed to this first.

09:30.550 --> 09:32.810
This the one server.

09:32.830 --> 09:41.130
So let's let's switch to the server and try to refresh once more so refresh.

09:41.140 --> 09:43.390
And it's up and running now.

09:43.540 --> 09:47.910
The transfers are allowed and we can do it.

09:48.130 --> 09:54.920
So things for watchin and I'm waitin for you in the next lesson.