Is there a way to configure Windows Server DNS with a conditional forwarder that has two authoritative forwarders? While the first server is authoritative, if that query returns no results, it should query the second authoritative forwarder.
We have a windows server VM in Azure which has been promoted to a DC for our domain 'myorg.com'. We have a separate DNS server (windows server 2019) which is configured with a conditional forwarder to forward queries for 'myorg.com' to the DC, which is authoritative for that zone. ADDS domain works as expected in this configuration.
The issue we are facing is that any custom DNS records we need to create under myorg.com require us to log into a VM and use the windows DNS tool to create them. Our preference would be to use Azure Private DNS zones for our custom records, as these are easier to manage and more easily auditable in Azure by our users.
We can configure the conditional forwarder to use Azure wireserver as a fallback and link the private zone, but when the DC responds that it is authoritative but does not have the record, the forwarder never sends the query to second server. (Understand this is how conditional forwarders are supposed to work).
