The DNS Server service relies on Active Directory Domain Services to store and retrieve information for AD DS-integrated zones. In general, event id 4007 indicates that AD DS is not responding to requests from the DNS Server service. Open CMD and type “ DCdiag ” to ensure that AD DS is functioning properly. Dcdiag:
The DNS server was unable to open zone %1 in the Active Directory from ...
ie, The operation failed because: Active Directory could not create the object CN=SERVER2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=athul,DC=com on the remote domain controller sys10.athul.com. This could be a result of either insufficient rights or transient network behavior. Create the object manually or try this again.
Basically, if an object in your active directory partitions exist in one or more domain controllers and not exist in the rest of the domain controllers in the same partition. So you may ask yourself how that is possible to have an object in a DC and not having the same object in another DC? So what is the responsibility of replication?
Table 1: Attributes that are synced from the on-premises Active Directory Domain Services (AD DS) to Windows Azure Active Directory (Windows Azure AD) The following table lists the attributes that are synced from the on-premises AD DS to Windows Azure AD. Be aware that objects must contain values in the following attributes to be considered for ...
Active Directory Domain Naming Considerations Applies to all versions of Windows Server capable of creating Active Directory Domain Services (AD DS) domains.
You have another option like adding new UPN suffix as mentioned by Marcin and add a additional internal DNS zone with the new FQDN ,and this zone can be integrated active directory.