Add-DAClientDnsConfiguration
Adds the specified DNS suffix, DNS server addresses, or proxy server set to the Name Resolution Policy Table (NRPT).
Syntax
Add-DAClientDnsConfiguration
[[-DnsIPAddress] <String[]>]
[-DnsSuffix] <String>
[-ProxyServer <String>]
[-ComputerName <String>]
[-PassThru]
[-CimSession <CimSession[]>]
[-ThrottleLimit <Int32>]
[-AsJob]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Description
The Add-DAClientDNSConfiguration cmdlet adds the specified DNS suffix, DNS server addresses, or proxy server set to the Name Resolution Policy Table (NRPT). When a DNS suffix is specified, but no servers are specified, it is treated as a NRPT exemption entry.
In a multi-domain deployment, when an NRPT entry that consists of DNS suffix, proxy server and DNS IP addresses is added to the NRPT table the settings are added to all the DirectAccess (DA) client Group Policy Objects (GPOs) in different domains. In multi-site deployment with firstref_client_7 clients, the added entries are added to both the Windows® 8 client GPOs and Windows® 7 client GPOs.
The NRPT configuration is applicable globally, to the entire DA deployment and therefore is not impacted by multi-site deployment.
Examples
EXAMPLE 1
PS C:\> Add-DAClientDNSConfiguration -DnsSuffix contoso.com -DnsIPAddress 2006:2005:1::2 -PassThru
Comment :
DirectAccessDnsServers : {2006:2005:1::2}
DirectAccessEnabled : True
DirectAccessProxyName :
DirectAccessProxyType : Direct
DirectAccessQueryIPsecEncryption : None
DirectAccessQueryIPsecRequired : False
DisplayName :
DnsSecEnabled :
DnsSecQueryIPsecEncryption : None
DnsSecQueryIPsecRequired : False
DnsSecValidationRequired : False
IPsecCARestriction :
Name : DA-{64329e4f-bd27-4d27-9553-6ed6880fa2a5}
NameEncoding :
NameServers :
Namespace : {contoso.com}
Version : 1This example will add an entry for contoso.com into the NRPT which will result in all the DNS queries for the suffix contoso.com to be sent to 2006:2005:1::2 server.
EXAMPLE 2
PS C:\>Add-DAClientDNSConfiguration -DnsSuffix corp.contoso.com -PassThru
Comment :
DirectAccessDnsServers :
DirectAccessEnabled : True
DirectAccessProxyName :
DirectAccessProxyType : Direct
DirectAccessQueryIPsecEncryption : None
DirectAccessQueryIPsecRequired : False
DisplayName :
DnsSecEnabled :
DnsSecQueryIPsecEncryption : None
DnsSecQueryIPsecRequired : False
DnsSecValidationRequired : False
IPsecCARestriction :
Name : DA-{2cc7ec6f-9f80-4190-95cd-b9ee9cbd11a6}
NameEncoding :
NameServers :
Namespace : {corp.contoso.com}
Version : 1This example will add an exempt entry for corp.contoso.com in the NRPT which will result in DNS queries for the suffix corp.contoso.com to not go to a DNS server in the corporate network for resolution.
There are some names that need to be treated differently from all others with regards to name resolution; these names must not be resolved using intranet DNS servers. To ensure that these names are resolved with interface-configured DNS servers, these must added as NRPT exemptions.
There are several names that should be included on the exemption list - but the most important one is the name of the Network Location Server. This prevents the DA client from being able to connect to the NLS server when the server is off network and therefore prevents it from mistakenly thinking that it is on the corporate network.
Parameters
-AsJob
ps_cimcommon_asjob
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-CimSession
Runs the cmdlet in a remote session or on a remote computer. Enter a computer name or a session object, such as the output of a New-CimSessionhttp://go.microsoft.com/fwlink/p/?LinkId=227967 or Get-CimSessionhttp://go.microsoft.com/fwlink/p/?LinkId=227966 cmdlet. The default is the current session on the local computer.
| Type: | CimSession[] |
| Aliases: | Session |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-ComputerName
Specifies the IPv4 or IPv6 address, or host name, of the computer on which the Remote Access server computer specific tasks should be run.
| Type: | String |
| Aliases: | Cn |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Confirm
Prompts you for confirmation before running the cmdlet.
| Type: | SwitchParameter |
| Aliases: | cf |
| Position: | Named |
| Default value: | False |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-DnsIPAddress
Specifies the IPv4 or IPv6 address of the corresponding DNS servers that should be used for the specified DNS suffix. This parameter can be used with the DnsSuffix parameter.
| Type: | String[] |
| Aliases: | DirectAccessDnsServers |
| Position: | 2 |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-DnsSuffix
Specifies a single DNS suffix.
| Type: | String |
| Aliases: | Namespace |
| Position: | 1 |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-PassThru
Returns an object representing the item with which you are working. By default, this cmdlet does not generate any output.
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-ProxyServer
Specifies the IPv4 or IPv6 address, or host name, of the proxy server configured for web traffic.
The proxy server is specified in either the \<Proxy_Hostname\>:\<port\> or the \<Proxy_IPAddress\>:\<port\> format.
| Type: | String |
| Aliases: | DirectAccessProxyName |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-ThrottleLimit
Specifies the maximum number of concurrent operations that can be established to run the cmdlet.
If this parameter is omitted or a value of 0 is entered, then Windows PowerShell® calculates an optimum throttle limit for the cmdlet based on the number of CIM cmdlets that are running on the computer.
The throttle limit applies only to the current cmdlet, not to the session or to the computer.
| Type: | Int32 |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-WhatIf
Shows what would happen if the cmdlet runs. The cmdlet is not run.
| Type: | SwitchParameter |
| Aliases: | wi |
| Position: | Named |
| Default value: | False |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
Inputs
None
Outputs
The Microsoft.Management.Infrastructure.CimInstance object is a wrapper class that displays Windows Management Instrumentation (WMI) objects.
The path after the pound sign (#) provides the namespace and class name for the underlying WMI object.
The DnsClientNRPTRule object consists of the following properties:
-- The NRPT object for the NRPT entry that was added.
Related Links
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for