Update Top Level Domain Zones Specifies whether the computers to which this setting is applied may send dynamic updates to the zones named with a single label name, also known as top-level domain zones, for example, 'com'. By default, a DNS client configured to perform dynamic DNS update sends dynamic updates to the DNS zone that is authoritative for its DNS resource records, unless the authoritative zone is a top-level domain and root zone. If this setting is enabled, computers to which this policy is applied send dynamic updates to any zone that is authoritative for the resource records that the computer needs to update, except the root zone. If this setting is disabled, computers to which this policy is applied do not send dynamic updates to the root and/or top-level domain zones that are authoritative for the resource records that the computer needs to update. If this setting is not configured, it is not applied to any computers, and computers use their local configuration.

[enable/disable]

(1) GPO: Computer ConfigurationAdministrative TemplatesNetworkDNS Client!Update Top Level Domain Zones (2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindows NTDNSClient!UpdateTopLevelDomainZones