Another DNS record deletion question

Similar Messages

• Static DNS record deleted automatically- Windows 2008 R2 SP1

  Hi,
  I have scoured the Interweb and tried all suggestions to no avail for this one. Here's the scenario:
  My client has a Windows 2008 R2 SP1 (Windows 2003 domain/forest functional level) server which is a DC and DNS server. The problem is that a DNS record for an Exchange 2010 server is getting deleted every 10 or 40 minutes. This started occurring for no obvious
  reason a few weeks ago. The impact is that users cannot connect to Exchange (caching does not seem to help with this, which is odd). I disabled scavenging, which did not resolve the issue. I enabled auditing and found a 4662 event revealing that the domain
  administrator account was deleting the server A record (and pointer record). Why this is happening is what I am trying to investigate next: possible bug? The zone is configured as non secure- maybe making it securing it would help? But this does not explain
  why the record is being deleted. There is no NIC teaming implemented, which I understand can cause issues. 
  As an interim measure I created a script employing dnscmd that recreates the record every 15 minutes, which works for the most part, but not always, which is why I added a deny permission on the record for the domain Administrators group, seems so far to
  have prevented the record from being deleted.
  Any advise on the cause of this and how to investigate why the record is being deleted will be much appreciated!

  Hi- thanks for that. However I have seen those links and already followed them: I turned off scavenging (default 7 day configuration) and the record still gets deleted (scavenging date is not due till a later data in any case). Also the record is static
  so it would not get scavenged? The option to delete the record if stale is unchecked.
  I already enabled auditing and identified event 4662, which identified that the domain administrator account that is deleting the record:
  Log Name:      Security
  Source:        Microsoft-Windows-Security-Auditing
  Date:          8/01/2014 11:47:25 AM
  Event ID:      4662
  Task Category: Directory Service Access
  Level:         Information
  Keywords:      Audit Success
  User:          N/A
  Computer:      DC.domain.com.au
  Description:
  An operation was performed on an object.
  Subject :
  Security ID:
  DOMAIN\administrator
  Account Name:
  administrator
  Account Domain:
  DOMAIN
  Logon ID:
  0x2e1b093
  Object:
  Object Server:
  DS
  Object Type:
  dnsNode
  Object Name:
  DC=EXCHANGEHOST,DC=domain.com.au,CN=MicrosoftDNS,CN=System,DC=domain,DC=com,DC=au
  Handle ID:
  0x0
  Operation:
  Operation Type:
  Object Access
  Accesses:
  Write Property
  Access Mask:
  0x20
  Properties:
  Write Property
  {771727b1-31b8-4cdf-ae62-4fe39fadf89e}
  {e0fa1e69-9b45-11d0-afdd-00c04fd930c9}
  {d5eb2eb7-be4e-463b-a214-634a44d7392e}
  {e0fa1e8c-9b45-11d0-afdd-00c04fd930c9}
  Additional Information:
  Parameter 1:
  Parameter 2:
  Please advise!
  Thanks
   

• Another multi-record block question

  I have always struggled with this. I have a muti-record block(10 records displayed). Eventhough my block is a db block, I have not assigned it a table. Hence, it is a non-db block. If I set enabled on a txt box, it
  is enabling the entire column. I need to enable only the text box on which the cursor is/user navigated to.
  How to do it?
  Thanks,
  Chiru
  Edited by: Megastar_Chiru on Sep 21, 2010 2:03 PM

  ok..here is the explanation of the issue
  in my multi-record block, there is a drop down list column with 2 values "Monthly %" and "Half-Rent". So, for example, in record 1, the drop-down could be chosen as "Monthly %" while in rec2, it could be "Half-rent". Right next to this list column, I have a text box. When the user chooses "Monthly %", the text box need to be enabled to allow keying a % value (say 5%). While in rec2, since the user chooses "Half-rent", the text box needs to be disabled for this record. How to accomplish this?
  Thanks,
  Chiru

• Log DNS record Creation / deletion events on DC's security event viwer

  hi,
  I have configured the DNS record creation and deletion auditing as per below microsoft blog
  http://blogs.technet.com/b/networking/archive/2011/08/17/tracking-dns-record-deletion.aspx    on one of my DC.
  All setting are done correctly and events for DNS creation and deletion is generated in security event logs. BUT THESE EVENTS ARE ONLY GENERATED ON ONE DC. We have 3 other DC, i checked the security events on other 2 DC but there is no event logs. Only one
  DC has that events.
  Is there any way so that whenever DNS record is created / deleted the events SHOULD CREATED ON ALL DCs. This will save time else i have to check on all DCs security events.
  Please suggest

  Greetings!
  It is by design. When you want to create a record in on of the DNS servers, you open the DNS console and connect to a server. Record creation/deletion is a single server process, and after that it is replicated to all the DNS servers using Zone Transfers
  or AD Integrated Zones. Since this is a single server process the audit is generated in the server's event viewer itself.
  So he best thing you can do is to collect all the events regarding "DNS Auditing" from your DNS servers and store them in a server. More information on:
  Configure Computers to Forward and Collect Events
  Regards.
  Mahdi Tehrani   |  
    |  
  www.mahditehrani.ir
  Please click on Propose As Answer or to mark this post as
  and helpful for other people.
  This posting is provided AS-IS with no warranties, and confers no rights.
  How to query members of 'Local Administrators' group in all computers?

• Is DNS record scavening turned on by default?

  when setting up DNS on a windows 2008 server, is DNS scavenging turned on by default?....
  thanks
  sid

  Hi,
  You can refer the following article to auditing the DNS entry deleted reason:
  Tracking DNS Record Deletion
  http://blogs.technet.com/b/networking/archive/2011/08/17/tracking-dns-record-deletion.aspx
  Hope this helps.
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• Where do deleted Static DNS records go?

  Since we enabled the Active Directory recycle bin some time ago, we noticed that there is also a recycle bin for the ForestDNSRecords and DomainDNSRecords container. It appears that dynamic DNS entries are being treated like any other object and getting
  moved to CN=Deleted Objects,DC=<Domain|Forest>DNSZones,DC=<YourDomain>,DC=<Suffix>. When Static entries are deleted we do not see them in the Deleted Objects container. Is that a bug, by design, or are we missing something?

  Static records should show up along with dynamically created records. I don't believe they would go anywhere else, since they are just DNS nodes in the same context. Maybe there's some other mitigating issue that may be causing it?
  Have you seen the following links? If not, let us know what links you were reading, please.
  What to do when DNS records disappear
  http://searchwindowsserver.techtarget.com/tip/What-to-do-when-DNS-records-disappear
  Using AD Recycle Bin to restore deleted DNS zones and their contents in Windows Server 2008 R2
  http://blogs.technet.com/b/askds/archive/2010/08/12/using-ad-recycle-bin-to-restore-deleted-dns-zones-and-their-contents-in-windows-server-2008-r2.aspx
  Curious, when you deleted the dynamic and static records, did you do that on the same DC in the same AD Site?
  Are there any replication errors or issues?
  Let's also eliminate any possibilities of the existence of duplicate AD integrated zones. If there are, one DC's *view* or what it *sees* in a partition will be different than another DC's view.
  Using ADSI Edit to Resolve Conflicting or Duplicate AD Integrated DNS zones
  http://blogs.msmvps.com/acefekay/2009/09/02/using-adsi-edit-to-resolve-conflicting-or-duplicate-ad-integrated-dns-zones
  Ace Fekay
  MVP, MCT, MCSE 2012, MCITP EA & MCTS Windows 2008/R2, Exchange 2013, 2010 EA & 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003
  Microsoft Certified Trainer
  Microsoft MVP - Directory Services
  Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php
  This posting is provided AS-IS with no warranties or guarantees and confers no rights.

• DNS Records Questions - TXT Files

  Hello everyone,   I would like to preface this post with, this is my first time dealing with DNS records.  However, the instructions seem a little confusing, so i would like your professional feedback.  
  Currently using Godaddy for hosting.  Ill start with the instructions, then my set up, my result and my questions. 
  Instructions:
  You will be adding two separate TXT entries to your DNS record - note - be sure that you do not add any carriage returns when copying the key, below:
  First Entry (This is called the DKIM policy record):
  Name:  _domainkeyTXT:   "t=y; o=~;"If your domain is 'foo.com', then the 'name' entry will look like this when it is displayed as: "_domainkey.foo.com" 
  Second Entry: (This is called the 'selector record' and includes a public crypto key):
  Name: key1._domainkeyTXT: "k=rsa\; p=MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKQrQeUnNX/CQBIXWqeHc8lKl+EwhGKzPuDRbDjnN2Xzl8N4Fc2oQ6R+opnEM6U4x4p
  3NggEyNg8Mp2W6oUYpAECAwEAAQ=="
  If your domain is 'foo.com', then the 'name' entry for this will look like this when it is displayed: "key1._domainkey.foo.com"
  That's it!
  You can send a test message to a yahoo email address, then select Actions->View Full Headers in Yahoo
  when you view the email.  If you have configured DKIM correctly, the header information for the email will include a line similar to:
  Authentication-Results: mta1084.mail.mud.yahoo.com  from=mypinpointe.com; domainkeys=pass (ok)
  Fisrt Entrey
  Hostname: @
  TXT Value: _domainkey.mydomain.com:   t=y; o=~;
  TTL: 1/2 hour
  Second Entry:
  Hostname: @
  TXT Value: key1._domainkey.mydomain.com: k=rsa; p=MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKQrQeUnNX/CQBIXWqeHc8lKl+EwhGKzPuDRbDjnN2Xzl8N4Fc2oQ6R+opnEM6U4x4p3NggEyNg8Mp2W6oUYpAECAwEAAQ==
  TTL: 1/2 hour
  Results
  1. a really long string of code, but when you search for it here is the result  Doesnt say domainkeys=pass (ok): 
        Authentication-Results: mta1466.mail.gq1.yahoo.com  from=giglinxusa.com; domainkeys=neutral (no sig);  from=crapemyrtle.mypinpointe.com; dkim=pass (ok)
  Questions
  1. Should the TXT value include "", like they have it in the instructions?
  2. In the first entry, should there be so many spaces after the .com:    t=y
  3. What are carriage returns? (assuming spaces)

  Hello,
  but I don't understand anything else then you will use Godaddy.
  What is the aim of this? Connecting an email domain to your internal network or about web services? Please be more specific in your description what you are trying to achieve.
  Best regards
  Meinolf Weber
  MVP, MCP, MCTS
  Microsoft MVP - Directory Services
  My Blog: http://msmvps.com/blogs/mweber/
  Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.

• Server DNS record automatically deleted

  We built a new file server 10 days ago. When we set it up it would have gotten a dhcp address which then we converted it into having a static ip address.
  8 days later the DNS Record for the server automatically got deleted. This was not setup as a static record in DNS as it would have had a time stamp on it. The server was online the whole time and was not rebooted. What would cause the DHCP record of the
  file server to automatically get deleted when this has never happened when setting up new servers or productions servers as none of our staff deleted the record.

  Hi,
  The reord is first registered by DHCP server, so the owner would be the DHCP server. And only DHCP server could change the record. Once the lease in DHCP is expired, the record will be deleted.
  Just reigster the record manually, if it is deleted again, then it should be a problem. But I don't think it will happen.

• Can we generate the Offfice 365 MX-Token needed for the MX-DNS-Record by ourselves?

  Hi there
  As a hosting company we programmed a DNS-zone-editor in which our customers can edit their DNS-zone. A new feature we are offering is a so-called "DNS-Template-Service", in which our customers can select predefined record templates like GoogleApps
  and then trigger by one click the installation of the predefined records.
  We also would like to offer them "Office 365" as a template. According to this article https://support.office.com/en-ie/article/Create-DNS-records-at-any-DNS-hosting-provider-for-Office-365-7b7b075d-79f9-4e37-8a9e-fb60c1d95166#BKMK_add_CNAME we
  understand that all we need to do is to add a couple of CNAME, TXT and SRV records which is great.
  However, there is also an MX record with a dynamical component (the "MX-Token") that is required:
  <MX token>.mail.protection.outlook.com
  We understand that this token can be fetched by the customer from their office installation. However that would break the purpose of our templating system that is designed to work like an on/off switch.
  So our question is if there is any way that our system could generate this token by itself since we have knowledge of the customers domain anyway.
  According to some customers who already installed those records manually we can see some patterns:
  Example 1: domain1.com results in an MX with a value of
  domain1-com.mail.protection.outlook.com
  This is easy: just replace the dot with a hyphen.
  However for domains with hyphens in the name a special conversion is made and appended on the back of the first part: 
  Example 2: domain-withdash.com results in an MX with a value of domainwithdash-com01e.mail.protection.outlook.com
  Example 3: dom-ainwithdash.com results in an MX with a value of domainwithdash-com0i.mail.protection.outlook.com
  Example 4: doma-in-withadash.ch results in an MX with a value of domainwithdash-com01bb.mail.protection.outlook.com
  So what is the algorithm for this (probably bidirectional) conversion?
  Thanks for letting us know and make it easier for our customers to use office 365 with their own domain name.
  Regards
  Lukas
  Developer @ cyon GmbH

  We actually spent the last 1.5h to reverse-engineer the pattern and (hopefully) found the right answer on how these hyphen-replacements are substituted.
  * This functions generates a token as done in office 365
  * @return mixed|string
  private function getOffice365MxToken($domain)
  $delimiter = '0'; // delimiter between the domain part and the hyphen replacement part
  $token = $domain;
  $hyphenReplaceToken = '';
  // split domain string into chunks of 4 chars
  $chunkSize = 4;
  $chunks = str_split($token, $chunkSize);
  // transform the hyphens (their position) in the domain name to an alphanumerical character string
  $skipCount = 0;
  $intOfA = ord('a'); // get the decimal value of the letter 'a' as start value
  foreach($chunks as $chunk){
  $digit = $intOfA;
  for ($i = 0; $i < $chunkSize; $i++){
  if('-' === $chunk[$i]){
  $digit += pow(2, $i);
  if($intOfA === $digit){ // if the value is a it means no hyphen was found
  $skipCount++;
  continue;
  if (0 !== $skipCount) {
  $hyphenReplaceToken .= $skipCount;
  $hyphenReplaceToken .= chr($digit);
  $skipCount = 0; // rewind skip count
  if(strlen($hyphenReplaceToken) > 0){
  $token .= $delimiter . $hyphenReplaceToken;
  $token = str_replace('-', '', $token); // remove - from domain name
  $token = str_replace('.', '-', $token); // replace dots with -
  return $token;
  Short-hand explanation: The pattern showed that the domain string simply gets chunked into pieces of 4 chars. For each setting at which hyphen(s) can be located at the index value (seen as bit mask 0124) is added up. The resulting number we get per chunk
  then can be added to starting decimal value of the letter 'a' (97) and thus gives us another letter that substitutes the hyphens locations in this chuck. If no hyphen is found, the algo simply counts for how many chunks none were find and adds this up sa a
  number.
  These concatenated letters + skip-numbers then result in the replacement token that gets appended on the end of the domain name (hyphens removed, dots replaced with hyphens). 
  Oh and yeah, between these two parts a '0' is added as delimiter.
  That's it. I hope we got it correct.
  Regards
  Lukas @ cyon GmbH

• Backup DNS Records

  Afternoon, 
  Is there a way to create a back-up A record in order to provide redundancy? 
  I'm currently in the middle of setting up a DR site and looking to find a way to have a set of DNS record pointing at existing servers host name but with different IP addresses so in the event that we require to bring a replicated server up at the DR site
  the DNS record would automatic switch over after the TTL has expired on the primary link. 
  our DNS service runs on a windows server 2012 environment in a cluster of 3 servers for redundancy. 
  Thanks

  To answer/address the question about the same records with different IPs, unfortunately it doesn't work that way with AD. The IPs registered are absolute for the service locations, and they must be consistent across the organization for AD DC to DC communications
  including replication, and client to DC communications. If you attempt to alter them, it will cause numerous errors and additional headaches that I'm sure you do not want to deal with.
  Just setup two DCs at the DR, do not make them GCs. Just make them GCs in case a down issue occurs. Depending if you have 3 or more sites, this may also require to make individual site links for each site and disable BASL. The reasons are long winded,
  but it's technically how AD works. You can design around it, but you can't mess with DNS. And keep in mind, just because they are up, services and client apps may not be so forgiving to "see" the DR servers until they've been restarted.
  So there's more to this than it appears.  
  You can read up in this stuff in the following link:
  AD Site Design, DNS & the DC Locator Process, and Auto Site Link Bridging, or Bridge All Site Links (BASL)
  http://blogs.msmvps.com/acefekay/2013/02/24/ad-site-design-and-auto-site-link-bridging-or-bridge-all-site-links-basl/
  The blogs below discusses:
  WINS NetBIOS, Browser Service, Disabling NetBIOS, & Direct Hosted SMB (DirectSMB). Troubleshooting the browser service.
  Client side resolution process chart.
  The DNS Client Side Resolver algorithm.
  If one DC or DNS goes down, does a client logon to another DC or use the other DNS server in the NIC?
  DNS Forwarders Algorithm and multiple DNS addresses (if you've configured more than one forwarders or more than one IP in the NIC's DNS list)
  Client side resolution process chart
  Published by Ace Fekay, MCT, MVP DS on Nov 29, 2009 at 10:28 PM  1764  1
  http://blogs.msmvps.com/acefekay/2009/11/29/dns-wins-netbios-amp-the-client-side-resolver-browser-service-disabling-netbios-direct-hosted-smb-directsmb-if-one-dc-is-down-does-a-client-logon-to-another-dc-and-dns-forwarders-algorithm/
  Ace Fekay
  MVP, MCT, MCSE 2012, MCITP EA & MCTS Windows 2008/R2, Exchange 2013, 2010 EA & 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003
  Microsoft Certified Trainer
  Microsoft MVP - Directory Services
  Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php
  This posting is provided AS-IS with no warranties or guarantees and confers no rights.

• DNS record ownership and the DnsUpdateProxy group

  I have a 2 x 2003 domain controller that have DNS and DHCP Services installed
  I was thinking of configuring DHCP to use a service account to update DNS records.
  If I set this, do the DHCP Servers need to be members of the DNSUpdateProxy security group for the service account to work?>

  I have to agree with John here. I don't think it's reasonable to just say 'ms told us so'. We need a
  technical before and answer is given. I have multiple DHCP servers and I use a security account on them to register the records and never use the
  DNSUpdateProxy Group and I have no problems. My thinking is this:
  Assume we are using Integrated Secure Zones in AD:
  Scenario 1:
  Windows DHCP server i registering records on behalf of clients
  Not a member of DNSUpdateProxy Group and not using dedicated account
  Records will have owner as dhcpserver$  and only that account can update
  This is a problem if that DHCP server fails
  Also, non Windows DHCP server with no AD account cannot update
  Scenario 2:
  Windows DHCP server i registering records on behalf of clients
  Member of DNSUpdateProxy Group and not using dedicated account
  Records will have owner as SYSTEM  and authenticated users can updated meaning any user or client on that domain
  No problem if that DHCP server fails as any other authorized DHCP server can update
  Non Windows DHCP servers can updated if they have a domain machine account
  Scenario 3:
  Windows DHCP server i registering records on behalf of clients
  Using a dedicated account
  Records added with owner same as this dedicated account
  Another DHCP server that also uses this same account can updated the records
  A non windows DHCP server that can use this account can also update the records
  Now, can someone from MS please clarify the technical reason they say that in Scenario 3, you must add the DHCP servers to the
  DNSUpdateProxy group ?
  http://technet.microsoft.com/en-us/library/cc780538(v=ws.10).aspx
  I guess this link didn't help?
  DNS Record Ownership and the DnsUpdateProxy Group
  "... to protect against unsecured records or to permit members of the DnsUpdateProxy group to register records in zones that allow only secured dynamic updates, you must create a dedicated user account and configure DHCP servers to perform DNS dynamic updates
  with the credentials of this account (user name, password, and domain). Multiple DHCP servers can use the credentials of one dedicated user account."
  http://technet.microsoft.com/en-us/library/dd334715(WS.10).aspx
  Just to add:
  Why is the DnsUpdateProxy group needed in conjunction with credentials?
  The technical reason is twofold:
  DnsUpdateProxy:
   Objects created by members of the DNSUpdateProxy group have no security; therefore, any authenticated user can take ownership of the objects.
  DHCP Credentials:
   Forces ownership to the account used in the credentials, which the DnsUpdateProxy group allowed to take ownership other than the registering client.
  Otherwise, the default process is outlined below, and this applies to non-Microsoft operating systems, too, but please note that non-Microsoft operating systems can't use Kerberos to authenticate to dynbamically update into a Secure Only zone, however
  you can configure Windows DHCP to do that for you.
  1. By default, Windows 2000 and newer statically configured machines will
  register their own A record (hostname) and PTR (reverse entry) into DNS.
  2. If set to DHCP, a Windows 2000, 2003 or XP machine, will request DHCP to allow
  the machine itself to register its own A (forward entry) record, but DHCP will register its PTR
  (reverse entry) record.
  3. If Windows 2008/Vista, or newer, the DHCP server always registers and updates client information in DNS.
     Note: "This is a modified configuration supported for DHCP servers
           running Windows Server 2008 and DHCP clients. In this mode,
           the DHCP server always performs updates of the client's FQDN,
           leased IP address information, and both its host (A) and
           pointer (PTR) resource records, regardless of whether the
           client has requested to perform its own updates."
           Quoted from, and more info on this, see:
  http://technet.microsoft.com/en-us/library/dd145315(v=WS.10).aspx
  4. The entity that registers the record in DNS, owns the record.
     Note "With secure dynamic update, only the computers and users you specify
          in an ACL can create or modify dnsNode objects within the zone.
          By default, the ACL gives Create permission to all members of the
          Authenticated User group, the group of all authenticated computers
          and users in an Active Directory forest. This means that any
          authenticated user or computer can create a new object in the zone.
          Also by default, the creator owns the new object and is given full control of it."
          Quoted from, and more info on this:
  http://technet.microsoft.com/en-us/library/cc961412.aspx
  More on this discussed in:
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/6f5b82cf-48df-495e-b628-6b1a9a0876ba/regular-domain-user-uses-rsat-to-create-dns-records?forum=winserverNIS
  If that doesn't help, I highly suggest to contact Microsoft Support to get a definitive response. If you do, I would be highly curious what they say if it's any different than what I found out from the product group (mentioned earlier in this thread).
  And of course, if you can update what you find out, it will surely benefit others reading this thread that have the same question!
  Thank you!
  Ace Fekay
  MVP, MCT, MCSE 2012, MCITP EA & MCTS Windows 2008/R2, Exchange 2013, 2010 EA & 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003
  Microsoft Certified Trainer
  Microsoft MVP - Directory Services
  Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php
  This posting is provided AS-IS with no warranties or guarantees and confers no rights.

• How to record the records deleted in a table

  Hi Experts
  I want to run a report as a batch which should deleted the records
  which are sysdate - 60 and The report should log the number of records deleted
  from each table at End Of Run.
  Criteria for selecting records to be deleted are as follows:
  1.     ZINT_DATA
  u2022     ZINT_DATA.CREATED_ON <= (Today u2013 60 Days)
                 and ZINT_DATA.STATUS = u2018OKu2019
  So I want to create a table for log history recorded as
  Delete Date         Log description
  01.01.2008        1500 rows deleted
  30.03.2008        2000 rows deleted.
  30.04.2008        300  rows deleted.
  Eg The table are ZINT_DATA.
  The report starts like this
  REPORT z_eslp_command.
  DATA:
    fs_zint_data TYPE zint_data.
  DATA:
    t_zint_data TYPE
            TABLE OF
                    ZINT_DATA.
  START-OF-SELECTION.
  SELECT *
     FROM ZINT_DATA
     INTO TABLE t_ZINT_DATA PACKAGE SIZE 10000.
  ENDSELECT.
  LOOP AT t_zint_data INTO fs_zint_data.
  INSERT INTO ZINT_DATA_DEL
        VALUES fs_zint_data.
  select count(*) from zint_data_del.
  ENDLOOP.
  IF sy-subrc EQ 0.
    WRITE:
      'DATA INSERTED FROM ZINT_DATA into ZINT_DATA_DEL'.
  ENDIF.
  But Instead of creating another table , I want only log to be recorded as described.
  Thanks
  Regards
  Piroz

  Hi Kiran
  See the final modification of the report but I am getting an error as
  Field " Corresponding_fields" is unknown, it is neithere in one of the specified tables nor defined by a
  DATA statement, but I have already created an internal table itab1 , could you check and revert with the correction.
  REPORT  ZSD1DELETION                .
  TYPE-POOLS:SLIS.
  *Used in ZSDI_INTERFACE1 Program.
  TABLES:ZINT_DATA_DEL  . 
  *DATA: BEGIN OF ITAB1 OCCURS 0.
  *DATA: SL_NO TYPE SY-TABIX.
       INCLUDE STRUCTURE zint_data_del.
  *DATA:END OF ITAB1.
  DATA: BEGIN OF ITAB1 occurs 0 ,
        MANDT type zint_data_del-mandt,
        ZINT_ID type zint_data_del-zint_id,
        ZINT_TY type zint_data_del-zint_ty,
        CREATED_ON type zint_data_del-created_on,
        KEY_VAL type zint_data_del-key_val,
        SEQUENCE type zint_data_del-sequence,
        STATUS type zint_data_del-status,                 
        LENGTH type zint_data_del-length,           
        RAW_DATA type zint_data_del-raw_data,       
        end of itab1.
  *DATA: i_data TYPE TABLE OF ITAB1, " internal table
  *wa_data TYPE ITAB1. " work area
  DATA:LINE1(10) TYPE C,
       LINE2(10) TYPE C,
       date1(10) type c,
       date2(10) type c,
       name1(60),
       string1(100),
       title1(65),
       title2(100) type c,
       FNAME TYPE STRING.
  *Declarations for ALV
  DATA:itfieldcat TYPE slis_t_fieldcat_alv WITH HEADER LINE.
  DATA:itrepid TYPE sy-repid.
  itrepid = sy-repid.
  DATA:itevent TYPE slis_t_event.
  DATA:itlistheader TYPE slis_t_listheader.
  DATA:walistheader LIKE LINE OF itlistheader.
  DATA:itlayout TYPE slis_layout_alv.
  DATA:top TYPE slis_formname.
  DATA:itsort TYPE slis_t_sortinfo_alv WITH HEADER LINE.
  SELECTION-SCREEN BEGIN OF BLOCK B1 WITH FRAME TITLE TEXT-001.
  *PARAMETERS:P_WERKS LIKE BSEG-WERKS.
  SELECT-OPTIONS: S_DATE FOR ZINT_DATA_DEL-CREATED_ON OBLIGATORY.              
  SELECTION-SCREEN END OF BLOCK B1.
  *Validations w.r.t the Date
  AT SELECTION-SCREEN ON S_DATE.
  IF S_DATE IS INITIAL.
  MESSAGE 'Enter the Date' type 'E'.
  *Records from 2007 can't be deleted.
  ELSEIF S_DATE-LOW+0(4) >= '2007' AND
         S_DATE-HIGH+0(4) >= '2007'.
  MESSAGE 'Records from the Year 2007 cannot  be Deleted' type 'E'.
  ENDIF.
  CONCATENATE  s_DATE-low6(2) '.' s_DATE-low4(2) '.' s_DATE-low+0(4)
  INTO date1.
  CONCATENATE  s_DATE-high6(2) '.' s_DATE-high4(2) '.' s_DATE-high+0(4)
  INTO date2.
  PERFORM GETDATA.
  *&      Form  DOWNLOAD
        text
  -->  p1        text
  <--  p2        text
  form GETDATA.
  SELECT * FROM ZINT_DATA_DEL
           INTO CORRESPONDING_FIELDS OF TABLE ITAB1
           WHERE CREATED_ON IN S_DATE.
  IF ITAB1[] IS NOT INITIAL.
  DESCRIBE TABLE ITAB1 LINES LINE1.
  PERFORM DELETION.
  PERFORM ALV.
  ELSE.
  MESSAGE 'No Data' type 'S'.
  ENDIF.
  endform.                    " GETDATA
  *&      Form  DELETION
        text
  -->  p1        text
  <--  p2        text
  form DELETION .
  DELETE FROM ZINT_DATA_DEL WHERE CREATED_ON IN S_DATE.
  endform.                    " DELETION
  *&      Form  alv
        Fieldcatalog for ALV Report
  FORM alv.
  LOOP AT ITAB1.
  ITAB1-SL_NO = SY-TABIX.
  MODIFY ITAB1.
  ENDLOOP.
    DEFINE m_fieldcat.
      itfieldcat-fieldname = &1.
      itfieldcat-col_pos = &2.
      itfieldcat-seltext_l = &3.
      itfieldcat-do_sum = &4.
      itfieldcat-outputlen = &5.
      itfieldcat-edit = &6.
      append itfieldcat to itfieldcat.
      clear itfieldcat.
    END-OF-DEFINITION.
    m_fieldcat 'MANDT'     '' 'Client' '' 03 ''.
    m_fieldcat 'ZINT_ID' ''   'Id' '' 10 ''.
    m_fieldcat 'ZINT_TY'   '' 'Type.'  '' 05 ''.
    m_fieldcat 'CREATED_ON' '' 'Date Created on' '' 25 ''.
    m_fieldcat 'KEY_VAL'       '' 'key value'  '' 04  ''.
    m_fieldcat 'SEQUENCE' '' 'sequence' '' 06 ''  .
    m_fieldcat 'STATUS'   '' 'status.' '' 10 ''.
    m_fieldcat 'LENGTH'    '' 'Length.' '' 18 ''.
    m_fieldcat 'RAW_DATA'    '' 'Raw Data' '' 15 '' .
    itlayout-zebra = 'X'.
    itlayout-colwidth_optimize = 'X'.
    CALL FUNCTION 'REUSE_ALV_GRID_DISPLAY'
        EXPORTING
          i_callback_program      = sy-repid
          is_layout               = itlayout
        i_callback_user_command =  ' '
          i_callback_top_of_page  = 'TOP'
          it_fieldcat             = itfieldcat[]
          i_save                  = 'A'
       is_variant              = ITVARIANT
          it_events               = itevent[]
       is_print                = ITPRINTPARAMS
          it_sort                 = itsort[]
        TABLES
          t_outtab                = itAB1
          EXCEPTIONS
          program_error           = 1
          OTHERS                  = 2.
    IF sy-subrc <> 0.
      MESSAGE ID sy-msgid TYPE sy-msgty NUMBER sy-msgno
              WITH sy-msgv1 sy-msgv2 sy-msgv3 sy-msgv4.
    ENDIF.
  ENDFORM.                    "alv
  *&      Form  TOP
      Top of page for ALV Report
  FORM top.
     CALL FUNCTION 'REUSE_ALV_EVENTS_GET'
       EXPORTING
          i_list_type           = 0
       IMPORTING
          et_events             = itevent
  EXCEPTIONS
    LIST_TYPE_WRONG       = 1
    OTHERS                = 2
    IF sy-subrc  0.
  MESSAGE ID SY-MSGID TYPE SY-MSGTY NUMBER SY-MSGNO
          WITH SY-MSGV1 SY-MSGV2 SY-MSGV3 SY-MSGV4.
    ENDIF.
  string1 = 'Records from'.
  CONCATENATE string1 date1 'to' date2 INTO title1
  SEPARATED BY space.
  walistheader-typ = 'H'.
  walistheader-info = title1.
  APPEND walistheader TO itlistheader.
  CONCATENATE 'Records Deleted' '-' LINE1 INTO title2.
  walistheader-typ = 'H'.
  walistheader-info = title2.
  APPEND walistheader TO itlistheader.
    CALL FUNCTION 'REUSE_ALV_COMMENTARY_WRITE'
      EXPORTING
        it_list_commentary      = itlistheader
      I_LOGO                   = ''.
      I_END_OF_LIST_GRID       =
     ENDIF.
    CLEAR itlistheader.
  ENDIF.
  ENDFORM.                    "TOP
  Regrds
  Piroz

• How do I create a DNS record on my Mac Server?

  How do I create a DNS record on my Mac Server?

  The following is info that I found in another post that I have been trying to follow.
  MrHoffman      New England
  Re: Configure DNS - OS X Server Next Steps
  Feb 13, 2011 6:36 AM (in response to Jimbooooooo)
  You're setting up internal DNS services, you referenced your ISP DNS servers and you should not have, and now those servers have no translations for your hosts. This is a common misconfiguration.
  See [configuring DNS on Mac OS X Server|http://labs.hoffmanlabs.com/node/1436] for how to set up your internal DNS server.
  And if there are any references to your ISP DNS servers here (within your client settings, within your server settings, your Airport settings, etc), then you're usually going to have DNS and connectivity problems. You're running a server now, so you'll be running your own services, and (particularly because of NAT here) referencing only your own DNS server(s).
  You may be setting up external DNS (if and when you need that), but that should happen after you set up your internal DNS. The above article has a link to setting up external DNS, when you get around to that, if/when you need in-bound connections into your LAN.

• What are the right DNS records to host more than one site on OSX Server (ML). My conf in Server.app looks right but one of my sites lands on the default server. Any suggestion?

  I started using OSX Server on Mountain Lion a few days ago and it looks promising.
  I do however measure my ignorance in DNS matters...
  I defined two websites in addition to the the Default Server, so I have three names to deal with.
  For argument's sake
  - www.main.com is the default site
  - www.sitea.com is the first site
  - www.siteb.com is the second site
  I define a virtual host for www.sitea.com and another for www.siteb.com
  The resulting apache conf is what I would expect, I am pretty sure it is correct.
  So I modified my DNS entries (they were A records) to point to my new OSX Server.
  My result is:
  - www.main.com shows the default site
  - www.sitea.com shows the first site
  - www.siteb.com shows...the default site
  Any ideas?
  Cheers

  Thanks MrHoffman!
  My problem ended up being a name but not in the DNS!...In Apache.
  Your information allowed me to rule out possibilities and zoom in to the culprit faster.
  I just report here the conclusion hoping it can help someone else.
  When I installed OSX Server last week, I had in mind to principally run siteb.
  During the initial install, this is what I must have entered and then forgot about it.
  Then I defined my virtual hosts sitea and siteb and realised my machine was called siteb and changed its name to main to avaid a name collision. At which time I remember OSX Server telling me that changing the name could have consequences...But it apparently went ok, and it did except for one little thing.
  The consequence was this:
  in the main configuration file /Library/Server/Web/Config/apache2/http_server_app.conf the ServerName directive had remained siteb (instead of main). I manually updated it with TextEdit (could do vi from bash, its the same) and replaced siteb with main.
  There is a way to detect it.
  In Server.app, there is a "logs" panel, which displays all sorts of logs for everything including the websites.
  Each website's logs are presented as "access" and "error" logs. The information was there, but I could not see it because the viewing window in remarkably small for so much information in raw text...
  web logs are actually written to only two files in /var/log/apache2 (error.log and access.log)
  I openned two bash windows and run tail -f on error.log in one and tail -f access.log in the other.
  When I started the web service, apache threw a warning stating from mod_ssl saying that the certificate did not match the serve name...I the certificate was what I expected, I checked http_server_app.conf and found the ServerName directive that was not changed when I renamed my server...
  Easily fixed when its found, but it can take a while to find.
  BTW, I was using A DNS records for and it works, but I find your method of using CNAME records documents the administrator's intent better than with A records; I started to do the same. (A records a useful though, they can run a domain across multiple machines)
  Cheers mate!

• Oracle forms standard/default menu - Record Delete option

  Hi ,
  Oracle forms provides a standard menu with the below options.
  Action , Query , Block , Record , Help etc.
  Under each of these Menu options there are sub options.
  Eg: Under Record we have Previous , Next , Insert , Delete etc.
  Can someone please tell me how to control this menu item options for different forms.
  Eg: for 1 form i want to allow the Record - Delete option but for another form i dont want to give this option.
  How to do this ??
  Please help....
  I tried to search for the solution but couldnt get the right answer. Hope someone will help me out here.
  Regards,
  SRT

  Hello,
  The Oracle Forms documentation states:
  The Default menu is built-in to every form, and is not a separate menu module.
  You cannot change the structure of the Default menu or edit the menu items it
  displays.
  If your application requires
  unique menu functions, you must create a custom menu module and attach it to
  your form.
  If the internal default menu almost meets your needs, you can attach the
  "menudef.mmb" approximation of the default menu to the form. You can then
  rename and edit this menu.
  You can download the demo version for 10g R2 and menudefs_10g.mmb is included with the demos.
  http://download.oracle.com/otndocs/demos/Forms_Demos_10gr2.zip
  You will get menudef_10g.mmb and menudefs_10g.mmb.
  If needed check metalink note:
  Differences between menudef.mmb and menudefs.mmb menu files. [ID 1081136.1]
  Kind regards,
  Alex
  If someone's answer is helpful or correct please mark it accordingly.