Run this for all your subdomain’s fqdn to list all servers. A sample output would be this:
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 |
Server: dc1.contoso.com Address: 192.100.5.10 _vlmcs._tcp.contoso.com SRV service location: priority = 0 weight = 0 port = 1688 svr hostname = KMS01.contoso.com _vlmcs._tcp.contoso.com SRV service location: priority = 0 weight = 0 port = 1688 svr hostname = John-Desktop.contoso.com KMS01.contoso.com internet address = 192.41.5.4 John-Desktop.contoso.com internet address = 192.20.50.20 |
As you see, we have 2 KMS host entries, one seems valid, the other looks like someone attempted to activate his PC the wrong way and ended up publishing KMS service records in DNS.
- Login/RDP/PSEXEC to the affected host (John-Desktop) and uninstall KMS product key. To do this, run this from an elevated command prompt:
1 |
cscript %windir%\system32\slmgr.vbs /upk |
- Install the default KMS client key, found here:
1 |
cscript %windir%\system32\slmgr.vbs /IPK [KMS client Setup Key]" |
- Activate the computer as a client using the command below. In our case it would go to the KMS01.constoso.com host
1 |
cscript %windir%\system32\slmgr.vbs /ato" |
- Now you should stop this record from being published in DNS. You guessed it, just because you uninstalled the KMS host key and put in the client Key doesn’t mean he stopped advertising KMS in DNS. If you are running Windows 2008 R2, slmgr.vbs has a switch which does this for you:
1 |
cscript %windir%\system32\slmgr.vbs /cdns" |
- Stop and Start the Software Licensing Service:
1 2 3 |
net stop SLSVC net start SLSVC |
- Remove the _vlmcs KMS service record for John-Desktop from the contoso.com _tcp node. You can do this via dnsmgmt.msc console
No Comments