Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-2934: How to set custom DNS servers for the adclient and bypass /etc/resolv.conf

Centrify Identity Service, Mac Edition ,  

12 April,16 at 11:22 AM

Applies to: Centrify DirectControl on Mac OS X 10.7 and later
 
Question:
 
Mac OS X 10.7 and higher no longer use /etc/resolv.conf for name resolution, however the file is left on the system for backwards compatibility.  
 
Since it is no longer used, some VPN programs no longer update the DNS server information in /etc/resolv.conf when signing on.  
 
Is there a way to configure Centrify to use the DNS info in OS X, rather than /etc/resolv.conf?

 
Answer:
 
/etc/resolv.conf is normally used as default, but the Centrify Mac agent can also be configured to use custom DNS servers instead:
 
Add the following line in /etc/centrifydc/centrifydc.conf:
 
dns.servers: 1.1.1.1 2.2.2.2 
 
(Where 1.1.1.1 and 2.2.2.2 are the IP addresses of the DNS servers to use)
 
After saving centrifydc.conf, restart the agent for the changes to take effect:
 
  sudo /usr/share/centrifydc/bin/centrifydc restart
 
 
Notes:
  • These are used INSTEAD of resolv.conf – not in addition to.
  • The values for the dns.servers are to be specified as IPv4 addresses, not names.
  • For more information on this parameter, see pg259 of the Centrify Admin Guide for Mac OS X, or pg76 of the Configuration and Tuning Reference Guide
  • To push the values via group policy, the following GP can be used:
     
    Computer Configuration / Centrify Settings / DirectControl Settings / "Add centrifydc.conf properties" 
     
    - Property name: dns.servers
    - Property value: 1.1.1.1 2.2.2.2 
 
 
For the standard method of setting up VPN for Centrify connectivity, see:

Still have questions? Click here to log a technical support case, or collaborate with your peers in Centrify's Online Community.