I have a windows 2003 active directory domain. This was based in a single site.
This has now gone multisite and the domain controllers in the new site are using Windows 2008 R2 but the schema of the domain is still win2k3.
Sites and services is configured to ensure that servers in the new site use the correct domain controllers and replication is working correctly across the two sites.
The internal DNS for the domain is AD replicated and is replicating across both sites OK.
I then change a newly provisioned server in the new site to use the two domain controllers (2k8) in the new site as their DNS servers and they are correctly able to resolve records on the AD domains DNS servers.
However when I join the new server to the domain no A record is created for the new member server despite Dynamic updates being enabled "secure only" so I'm having to create them manually.
I suspect this might be a configuration setting on the domain somewhere which is now legacy and needs to be removed but I'm not sure where to look.
Any ideas on this or other potential causes of this symptom?
Found the answer thanks all. It turns out at the point the domain controllers were added to the domain the firewall rules hadn't allowed for two way replication. That issue had been fixed but as a hangover the DNS servers will refuse new records until the DNS service is restarted. Having done that all is well again and new machines are registering DNS records.