Fortinet white logo
Fortinet white logo
7.2.0

Configuring Active Directory and DNS settings

Configuring Active Directory and DNS settings

This deployment has the following prerequisites:

  • All servers and virtual machines must belong to the same domain.
  • In this deployment, the Active Directory (AD) server also acts as a DNS server. The configuration requires you to configure DNS settings in AD.
To configure AD and DNS:
  1. In Server Manager on the AD Server, go to Tools > DNS.
  2. Right-click the DNS server, then select Properties.
  3. In the Properties dialog, go to the Advanced tab.
  4. Ensure that Enable round robin is selected. Click OK.
  5. Create two A records on the DNS server that have the same name, but point to their respective EMS servers. In this example, the records share the name "emsha". One points to 192.168.138.35, which is "EMS-Active". The other points to 192.168.138.34, which is "EMS-Passive".

  6. On a system joined to the AD, open Command Prompt and run nslookup <DNS record name>.<domain>. It should return the two IP addresses of the EMS instances that you configured in step 5.

Configuring Active Directory and DNS settings

Configuring Active Directory and DNS settings

This deployment has the following prerequisites:

  • All servers and virtual machines must belong to the same domain.
  • In this deployment, the Active Directory (AD) server also acts as a DNS server. The configuration requires you to configure DNS settings in AD.
To configure AD and DNS:
  1. In Server Manager on the AD Server, go to Tools > DNS.
  2. Right-click the DNS server, then select Properties.
  3. In the Properties dialog, go to the Advanced tab.
  4. Ensure that Enable round robin is selected. Click OK.
  5. Create two A records on the DNS server that have the same name, but point to their respective EMS servers. In this example, the records share the name "emsha". One points to 192.168.138.35, which is "EMS-Active". The other points to 192.168.138.34, which is "EMS-Passive".

  6. On a system joined to the AD, open Command Prompt and run nslookup <DNS record name>.<domain>. It should return the two IP addresses of the EMS instances that you configured in step 5.