Cisco Cisco TelePresence Video Communication Server Expressway
Example DNS SRV configuration for AD
Expected DNS SRV values
The VCS will expect to find the following DNS SRV records. DNS SRV records are set up automatically by
the AD server if it can access the DNS server.
the AD server if it can access the DNS server.
SRV lookup
Comment
_ldap._tcp.dc._msdcs.<Domain>
Provides the address of the Domain Controller for the
domain.
domain.
_ldap._tcp.Default-First-Site-Name._sites.dc._
msdcs.<Domain>
msdcs.<Domain>
Provides the first site name.
_kerberos._udp.<Domain>
Provides the KDC server address for access via UDP.
This entry must list port 88 for each KDC.
This entry must list port 88 for each KDC.
_kerberos._tcp.<Domain>
Provides the KDC server address for access via TCP.
This entry must list port 88 for each KDC.
This entry must list port 88 for each KDC.
_ldap._tcp.<Domain>
Provides the LDAP service on the Domain Controller.
This record must list port 389 for the DC.
This record must list port 389 for the DC.
Checking DNS SRV settings
1. Go to
Maintenance > Tools > Network utilities > DNS lookup
.
2. Enter the SRV path in the Host field.
3. Click Lookup.
Checking DNS SRV settings (Dig command)
Presence of the correct DNS entries can be validated by executing:
root# dig <DNS server> -t any <full dnssrv record, e.g. _ldap._tcp.dc._
msdcs.<DOMAIN>>
Example response:
; <<>> DiG 9.4.1 <<>> <DNS server> -t any <full dnssrv record>
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44952
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 2
Cisco TelePresence Device Authentication on Cisco VCS Deployment Guide (X8.5)
Page 40 of 55
Appendix 3: Active Directory (direct)