Installing the Active Directory Domain Services Role
Press the Ctrl-Alt-Del on the xxRWDC computer. Log in as the default administrator of the local computer with the username Administrator and cisIsThebest! as the password. The server manager should be displayed automatically.
In the left pain of the server manager, double click Roles.
Click Add Role.
Click next to bypass the welcome window. The select Server Roles window is displayed.
Check the Active directory Domain Services. Click Next.
Read the introductory information and click Next.
Confirm the Installation. Click Install. The Installation Results window is displayed.
Read the information contained in this windows and click Close.
1. WHAT DOES THE WINDOW INDICATE MUST BE DONE NEXT?
In the Active Directory Domain Services Window, click Active Directory Domain Services.
2. WHAT WARNINGS DO YOU SEE IN THE SUMMARY WINDOW?
Run the Active Directory Domain Services Installation Wizard (dcpromo.exe)
Check "Use Advanced Mode Installation" and click Next
Read the information presented and click Next. The Choose A Deployment Configuration window appears.
Click Create New Domain In A New Forest radio button and click Next.
Name the forest xxDomain.local replacing xx with your assigned student number in this course.
Accept the default NetBIOS name.
Set the forest function level to Windows Server 2003
3. WHAT WAS THE DEFAULT FUNCTION LEVEL?
Accept the Windows Server 2003 as the domain function level. The additional Domain Controller Options window is displayed.
4. WHAT OPTIONS ARE SELECTED BY DEFAULT?
5. WHICH OPTION IS GRADED OUT TO INDICATE THAT IT IS MANDATORY? 6. WHY IS THIS OPTION MANDATORY?
Accept the default selections and click Next.
The Active Directory Services Installation Wizard warning windows are displayed sequentially. Read each of the warnings and click Yes to continue.
Accept the default location for the Database, Log Files, and SYSVOL.
The Restore Mode Administrator Password is displayed. Use the password of cisIsTheBest! (be sure to put the ! at the end of it)
7. WHAT IS THE PURPOSE OF THE DIRECTORY SERVICES RESTORE MODE PASSWORD? Review the installation choices and click Next to continue.
The active Directory service should be installing.
Click Finish when prompted.
Restart the newly created Domain Controller.
Log back into the Domain Controller and open the Server Administration Wizard. Take a screenshot to include in your journal
Create User Accounts for lab use
Complete this project on the xxRWDC Server.
Log onto the Domain Controller
Open Active Directory Users & Computers
Click on the plus sign (+) next to the xxDomain.local. Click the Users container
Right-click Users, select New, then select User. The New Object-User window is displayed.
In the full name and User logon name fields type xxStudent (replacing xx with your student number assigned for this course)
9. WHAT VALUE DO YOU SEE IN THE USER LOGON NAME (PRE-WINDOWS 2000) FIELD? Click Continue. The New Object User window is displayed.
In the Password field, use our standard cis networking password of cisIsTheBest!.
Remove the checkmark next to User Must Change Password At Next Logon.
10. WHAT ARE THE FOUR OPTIONAL SETTINGS AVAILABLE ON THIS WINDOW?
Click the Next button, review your selections, and click Finish to create the xxStudent account.
Repeat these steps to create another student named Dunn and one account using your mySVC username.
Right-Click on the Enterprise Admins and select Properties.
11. WHAT IS THE GROUP SCOPE AND GROUP TYPE OF THE ENTERPRISE ADMINS GROUP? CAN YOU CHANGE THESE SETTINGS? Click the Members tab
12. WHAT OBJECT(S) BELONG TO THE ENTERPRISE ADMINS GROUP BY DEFAULT.
Click Add. Add the xxStudent, Dunn and your mySVC account to the Enterprise Admins group.
Take a screenshot to include in your journal
Click OK and close the Active Directory Users and Computers Window.
Install the Read-Only Domain Controller as the Child Domain
Log into the xxRODC machine as Administrator with the password cisIsTheBest!.
In the Server Manager window, click View Network Connections.
Right-click your network connection and select Properties. The network connections Properties window opens.
Click Internet Protocol Version 4 (TCP/IPv4) and select Properties.
Select the Use The Following DNS Server Addresses radio button.
In the Preferred DNS Server text box, enter the IP address information for the xxRWDC server. Click OK to save your changes and close the network connections window.
Expand the Server Manager if it is not already open.
Double-click Roles.
Click Active Directory Domain Services.
Place a checkmark next to Use Advanced Mode Installation and click Next.
Read the presented information and click Next.
Click the Existing Forest radio button, then select Create A New Domain In An Existing Forest. Click Next.
Type in the name of the Domain - xxDomain.local.
Click Set to specify an alternative set of credentials to create the child domain.
Type in xxStudent and the cisIsTheBest! password. Click OK to close the dialog box.
Click Next.
The FQDN of the Parent Domain is xxDomain.local.
In the Single label DNS Name of the Child Domain text box, key in xxChild.
13. WHAT IS THE FQDN OF THE NEW CHILD DOMAIN? Click Next.
The Domain NetBIOS Name window is displayed. Click Next.
The Set Domain Functional Level window is displayed. Click Next.
The Select A Site window is displayed. Click Next.
The Additional Domain Controller Options window is displayed. Place a check next to Global Catalog and DNS Server and click Next.
An Active Directory Domain Services Installation Wizard warning window is displayed. read the warning and click Yes to continue.
The Source Domain Controller window is displayed. Click Next.
The Location for Database, Log Files and SYSVOL window is displayed, click Next to accept the default values.
Key in the Restore Mode Administrator Password of cisIsTheBest!.
Review your installation choices and click Next to continue.
Take a screenshot to include in your journal
Click Finish when the wizard is complete and restart the computer.
Create an Administrative Account in the Child Domain.
Log into the xxRODC Child Domain Controller with the username Administrator and the cisIsTheBest! password.
Click Start, Administrative Tools, Active Directory Users and Computers.
Click the plus sign next to xxChild.xxDomain.local. Click the Users container
14 WHAT OBJECTS HAVE BEEN CREATED IN THIS CONTAINER AUTOMATICALLY BY THE ACTIVE DIRECTORY DOMAIN SERVICES INSTALLATION WIZARD?
Right Click on Users, select New, and the select User. the New Object-User windows is displayed.
In the Full Name and User Logon Name files, type in childxxStudent. Click Next to continue. In the Password and Confirmation password fields, key in our standard cis networking password (cisIsTheBest!). remove the checkmark next to User Must Change Password at Next logon.
Review your selections and click Finish to create the xxStudent user account.
Click the plus sign next to xxDomain.local. Click the Users Container. Right click Domain Admins and select Properties.
Click the Members tab
Click Add. Enter the object Names to Select windows is displayed.
Log onto the xxRWDC Server with the account xxStudent.
Click Start, Administrative Tools, DNS Management
Click the plus sign next to the server name.
Click Forward Lookup Zones, click xxDomain.local, click xxChild.xxDomain.local, click _msdcs and then click dc.
Click the _tcp in the left pane. in the right panel, double click _ldap
15. WHAT INFORMATION IS INCLUDED IN THIS ENTRY? Close the DNS management console.
Open a command prompt window.
Key in nslookup and press Enter
key in set type=srv and press enter
key _ldap._tcp.dc._msdcs.xxchild.xxdomain.local and press enter. A summary output is displayed showing the LDAP SRV resource record for Domain controllers within the child domain. Key in exit and press enter.
Take a screenshot to include in your journal
Close the command prompt and log out of the server.
Installing a Server Core Domain Controller
Log on to your xxSCDC server with the administrative username and password.
In the Command Prompt Window key in netsh interface ipv4 set dnsservers "Local Area Connection" static 192.168.10.xxx Primary replacing the xxx with the IP of your xxRWDC Server and press Enter.
Key in ipconfig /all
16. WHAT IS THE PRIMARY DNS SERVER OF THIS COMPUTER? key notepad and then press Enter.
Enter the following text into the Notepad window to create an unattended configuration file for the dcpromo process. [DCInstall] ; Replica DC promotion ReplicaOrNewDomain=Replica ReplicaDomainDNSName=xxdomain.local SiteName=Default-First-Site-Name InstallDNS=Yes ConfirmGc=Yes UserDomain=xxDomain.local Username=xxDomain.local\xxStudent Password=cisIsTheBest! DatabasePath=" C:\Windows\DataBase" LogPath="C:\Windows\LogPath" SYSVOLPath=" C:\Windows\NTDS" SafeModeAdminPassword=cisIsTheBest!
Replace any instance of xxDomain or xxStudent with your student number (like 01Domain) Save the file as c:\unattend.txt and close Notepad.
command prompt. After the Domain Controller reboots, check the xxRWDC Active Directory Users & Computers module, open Domain Controllers. You should see the xxSCDC listed here.
After booting up, Log on as the administrative account xxDomain\ xxStudent.
From the command prompt window, key in notepad c:\unattend.txt and press enter.