A fresh UCS was installed, the AD Takeover progress was successful. Everything is ok but when I join a computer to domain, client cannot resolve name of domain "fmphn.com". I checked carefully, the DNS server and time of clients match the requirement of UCS. The error told me that there's missing SRV record in our DNS 
root@ucs:~# /usr/share/univention-samba4/scripts/check_essential_samba4_dns_records.sh
Host gc._msdcs not found: 3(NXDOMAIN)
_gc._tcp.fmphn.com has SRV record 0 100 3268 fmp-dc1.fmphn.com.
_gc._tcp.fmphn.com has SRV record 0 100 3268 ucs.fmphn.com.
Host _ldap._tcp.gc._msdcs not found: 3(NXDOMAIN)
_ldap._tcp.fmphn.com has SRV record 0 100 389 ucs.fmphn.com.
_ldap._tcp.fmphn.com has SRV record 0 100 389 fmp-dc1.fmphn.com.
Host _ldap._tcp.dc._msdcs not found: 3(NXDOMAIN)
Host _ldap._tcp.pdc._msdcs not found: 3(NXDOMAIN)
Host _ldap._tcp.c151ba93-a5ed-45a3-b232-eed06113b226.domains._msdcs not found: 3(NXDOMAIN)
Host _kerberos._tcp.dc._msdcs not found: 3(NXDOMAIN)
_kerberos._tcp.fmphn.com has SRV record 0 100 88 ucs.fmphn.com.
_kerberos._tcp.fmphn.com has SRV record 0 100 88 fmp-dc1.fmphn.com.
_kerberos._udp.fmphn.com has SRV record 0 100 88 fmp-dc1.fmphn.com.
_kerberos._udp.fmphn.com has SRV record 0 100 88 ucs.fmphn.com.
_kpasswd._tcp.fmphn.com has SRV record 0 100 464 ucs.fmphn.com.
_kpasswd._tcp.fmphn.com has SRV record 0 100 464 fmp-dc1.fmphn.com.
_kpasswd._udp.fmphn.com has SRV record 0 100 464 fmp-dc1.fmphn.com.
_kpasswd._udp.fmphn.com has SRV record 0 100 464 ucs.fmphn.com.
Located DC 'ucs' in site 'FMPHN'
Host 6ec2b9ca-b2e8-43c6-9de1-cece390c4e6f._msdcs not found: 3(NXDOMAIN)
## Records for site FMPHN:
_ldap._tcp.FMPHN._sites.fmphn.com has SRV record 0 100 389 fmp-dc1.fmphn.com.
_ldap._tcp.FMPHN._sites.fmphn.com has SRV record 0 100 389 ucs.fmphn.com.
Host _ldap._tcp.FMPHN._sites.dc._msdcs not found: 3(NXDOMAIN)
_kerberos._tcp.FMPHN._sites.fmphn.com has SRV record 0 100 88 ucs.fmphn.com.
_kerberos._tcp.FMPHN._sites.fmphn.com has SRV record 0 100 88 fmp-dc1.fmphn.com.
Host _kerberos._tcp.FMPHN._sites.dc._msdcs not found: 3(NXDOMAIN)
## Optional GC Records for site FMPHN:
_gc._tcp.FMPHN._sites.fmphn.com has SRV record 0 100 3268 ucs.fmphn.com.
_gc._tcp.FMPHN._sites.fmphn.com has SRV record 0 100 3268 fmp-dc1.fmphn.com.
Host _ldap._tcp.FMPHN._sites.gc._msdcs not found: 3(NXDOMAIN)
No _kerberos TXT record (ok)
root@ucs:~# 

But when I checked in the UMC, all neccessary records do exist. After that I found the reason why UCS server told that some records not found although those records do exist in the DNS and LDAP Directory in UMC. The reason is BIND cannot accesses the Samba internal DNS data via the DLZ interface:
- follow the problem of BIND DLZ, I check in the UCR and search with keyword "connector/ad/ldap" and the result is: https://lh3.googleusercontent.com/-DFUxdaG2CPw/VhrgtC_ZGfI/AAAAAAAAAC8/IT4veJaHDZ4/s576-Ic42/ucr-ad-ldap.png
- I made a search in the console of UCS for "bindpw" and it returned no result, so there is no bindpw file exist in UCS system to satisfy the configuration from: /etc/bind/univention.conf.d/fmphn.com

I've sent an email including log and samba, univentioni configurations to Univention with Ticket#2015101121000063
Please help me to solve this. Thank you.