Manually remove Direct Access from a client

If the client is unable to do a DNS lookup, remove the following in the registry to disable/remove Direct Access DNS config.

1
2
3
4
5
6
$reg = 'HKLM:\SOFTWARE\Policies\Microsoft\Windows NT\DNSClient\DnsPolicyConfig'

Get-ChildItem -Path $reg |
ForEach {Remove-Item $_.pspath}

Restart-Service DNSCache -force