Policy
Update security level
Specifies the security level for dynamic DNS updates. To use this policy setting, click Enabled and then select one of the following values: Unsecure followed by secure - the DNS client sends secure dynamic updates only when nonsecure dynamic updates are refused. Only unsecure - the DNS client sends only nonsecure dynamic updates. Only secure - The DNS client sends only secure dynamic updates. If you enable this policy setting, DNS clients that attempt to send dynamic DNS updates will use the security level that you specify in this policy setting. If you disable this policy setting, or if you do not configure this policy setting, DNS clients will use local settings. By default, DNS clients attempt to use unsecured dynamic update first. If an unsecured update is refused, clients try to use secure update.
629239f38859 DNS_UpdateSecurityLevel Registry
Copy registry mappings
HKLM\Software\Policies\Microsoft\Windows NT\DNSClient\UpdateSecurityLevelPolicy notes
Specifies the security level for dynamic DNS updates. To use this policy setting, click Enabled and then select one of the following values: Unsecure followed by secure - the DNS client sends secure dynamic updates only when nonsecure dynamic updates are refused. Only unsecure - the DNS client sends only nonsecure dynamic updates. Only secure - The DNS client sends only secure dynamic updates. If you enable this policy setting, DNS clients that attempt to send dynamic DNS updates will use the security level that you specify in this policy setting. If you disable this policy setting, or if you do not configure this policy setting, DNS clients will use local settings. By default, DNS clients attempt to use unsecured dynamic update first. If an unsecured update is refused, clients try to use secure update.