Today’s tip…

DNS is a critical component of modern networking.  DNS is a huge target for attackers because if a DNS record is compromised, clients can be redirected to an attackers computer.  DNSSEC provides validity that a DNS record has not been compromised.  DNSSEC has been difficult to manage and maintain in previous versions of Windows. 

In Windows Server 2012, DNSSEC is very easy to deploy and maintain.  A wizard walks the admin through the process in a handful of clicks.  It can be used in a mixed Active Directory environment to allow for a staged deployment of DNSSEC.  DNSSEC in Windows Server 2012 even supports dynamic DNS updates!