沒有動態 DNS 註冊的 MS Active Directory

我有一個正在執行的帶有非 Microsoft DNS 伺服器的 Active Directory。DNS 伺服器是 AD 域區域的權威 DNS 伺服器。此 DNS 區域中存在 AD 所需的所有 DNS 記錄。

到目前為止沒有問題。

但是域控制器上的 Netlogon 服務會記錄一些錯誤，因為動態註冊失敗。

The dynamic registration of the DNS record 'domain.example.com. 600 IN A 192.168.x.x' failed on the following DNS server:  

DNS server IP address: 192.168.x.y 
Returned Response Code (RCODE): 5 
Returned Status Code: 9017  

For computers and users to locate this domain controller, this record must be registered in DNS.  

USER ACTION  
 Determine what might have caused this failure, resolve the problem, 
 and initiate registration of the DNS records by the domain controller. 
 To determine what might have caused this failure, run DCDiag.exe. 
 To learn more about DCDiag.exe, see Help and Support Center. 
 To initiate registration of the DNS records by this domain  controller, 
 run 'nltest.exe /dsregdns' from the command prompt on the domain controller
 or restart Net Logon service. 
 Or, you can manually add this record to DNS, but it is not recommended.  

ADDITIONAL DATA 
Error Value: DNS bad key.

AD不應該註冊DNS記錄，我在DNS伺服器上手動管理這個區域。是否可以禁用動態註冊？

謝謝你的幫助！

正如 JoeQwerty 評論的那樣https://support.microsoft.com/en-us/kb/198767

預設情況下，域控制器上的 Netlogon 服務註冊動態域名服務 (DNS) 記錄以通告 Active Directory 目錄服務服務。可以使用系統資料庫設置禁用此行為。

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Netlogon\Parameters\UseDynamicDns

UseDynamicDns REG_DWORD 值的預設值數據是0x1. 將 UseDynamicDns REG_DWORD 值更改為0x0禁用動態註冊，並且%windir%\system32\config\netlogon.dns必須手動註冊文件夾中指定的記錄。

引用自：https://serverfault.com/questions/755275