Select the product you need help with
- Internet Explorer
- Windows Phone
- More products
Event ID 1056 Is Logged After Installing DHCP
Article ID: 282001 - View products that this article applies to.
This article was previously published under Q282001
After you install the DHCP Server service on a Windows Server 2003 domain controller that is also running the DNS Server service, the following event may be logged in the System log:
Event Type: Warning
Event Source: DhcpServer
Event ID: 1056
The DHCP service has detected that it is running on a domain controller and has no credentials configured for use with Dynamic DNS registrations initiated by the DHCP service. This is not a recommended security configuration. Credentials for Dynamic DNS registrations may be configured using the command line "netsh dhcp server set dnscredentials" or via the DHCP Administrative tool.
This behavior occurs because you did not configure the DNSCredentials on the domain controller on which you installed the DHCP Server service, and DNS services. This is not a recommended configuration; see the "More Information" section in this article for more details.
To resolve this behavior, configure DNSCredentials by using one of the following methods:
By Using the DHCP Server Snap-In
By Using the Netsh.exe Command Line
The DHCP Server service runs under the domain controller's computer account and therefore has full control of all DNS objects. As a result, DNS records that you have dynamically registered with DNS are susceptible to having their name records overwritten by an earlier version of DHCP Client. This behavior may be undesirable, especially if you have configured the DNS zone for Secure Updates only. By using the DNSCredentials parameter, you can run the DHCP Server service under a specified user account that does not have the ability to overwrite the DNS records.
Microsoft strongly recommends the use of DNSCredentials when you are running the DHCP Server service and DNS services on the same domain controller to ensure the integrity of Secure Dynamic Updates. If you do not use DNSCredentials, Microsoft recommends that you run the services on different computers.