Some time ago I had a serious problem at a costumer.
The customer had two AD domains in the same Forrest. One of them was running Windows Server 2008 R2 and the other Windows Server 2003 R2.
In the 2003 domain i went into the DNS console and changed the DNS zone replication from "To all DNS servers running on domain controllers in this domain" to "To all DNS servers running on domain controllers in this Forrest".
After a while I saw that the DNS zone for the domain on the 2003 server was missing....
I looked in the event log and found the following event:
Event ID 4005:
The DNS server received indication that zone domain.com was deleted from the Active Directory. Since this zone was an Active Directory integrated zone, it has been deleted from the DNS server.
I was in a state of panic for a few minutes until I found a way to recreate the missing DNS Zone:
The procedure was the following:
- Created an empty AD integrated zone with the same name as the deleted zone.
- Make a copy of the files netlogon.dnb and netlogon.dns in c:\windows\system32\config .
- Copy the file netlogon.dnb over netlogon.dns .
- Restart the netlogon service.
Now the DNS zone was recreated and the only thing left was to recreate the static A records. So nice!
Should it fail to recreate the zone you can read here
how to restore an AD integrated DNS zone from a backup.