Active Directory Domain Services (AD DS) is a directory service developed by Microsoft that plays a critical role in managing users, computers, groups, and other network resources within a Windows Server environment. It provides centralized authentication, authorization, and policy management, making it an essential component of enterprise and organizational IT infrastructures.
By implementing Active Directory, administrators can efficiently control access to network resources, enforce security policies, and simplify administration through a single, centralized database. AD DS works closely with DNS (Domain Name System) to enable domain-based networking and seamless communication between clients and servers.
This document provides a step-by-step guide to installing and configuring Active Directory Domain Services on a Windows Server. It is designed for system administrators, students, and IT professionals who want a clear and practical walkthrough, complete with screenshot placeholders for real-world implementation and documentation purposes.
1. Prerequisites
Before starting, ensure the following:
- Windows Server is installed and fully updated
- Server has a static IP address
- Server hostname is renamed (recommended before AD install)
- Administrator account access available
AD Server Name: INDDCPADS01
---------------------------------------------------------------------------------------------------------
Primary NIC :
IP Address: 192.168.10.100
Subnet Mask: 255.255.255.0
Gateway: 192.168.10.1
Preferred DNS: 192.168.10.100
---------------------------------------------------------------------------------------------------------
Secondary NIC:
IP Address: 192.168.20.100
Subnet Mask: 255.255.255.0
Gateway: 192.168.10.1
Preferred DNS: 192.168.20.100
Screenshot 1: Server hostname & IP configuration
2. Open Server Manager
Log in to the Windows Server
Open Server Manager from the taskbar or Start Menu
Screenshot 2: Server Manager dashboard
3. Add Roles and Features
In Server Manager, click Manage → Add Roles and Features
Click Next on the Before You Begin screen
Screenshot 3: Add Roles and Features wizard
4. Installation Type
Select Role-based or feature-based installation
Click Next
Screenshot 4: Installation type selection
5. Server Selection
Select your server from the server pool
Click Next
Screenshot 5: Server selection screen
6. Select Server Roles
Check Active Directory Domain Services
When prompted, click Add Features
Also ensure DNS Server is selected
Click Next
Screenshot 6: Selecting AD DS and DNS roles
7. Features Selection
Leave default features selected
Click Next
Screenshot 7: Features screen
8. AD DS InformationReview the information page
Click Next
Screenshot 8: AD DS overview screen
9. Confirm and InstallReview selections
Click Install
Wait for installation to complete
Screenshot 9: Installation progress
10. Promote Server to Domain Controller
After installation, click the notification flag in Server Manager
Select Promote this server to a domain controller
Screenshot 10: Promote to Domain Controller option
11. Deployment Configuration
Select Add a new forest
Enter the root domain name (example: ppc.com)
Click Next
Screenshot 11: New forest configuration
12. Domain Controller Options
14. NetBIOS Name
Accept default NetBIOS name or modify if required
Click Next
Screenshot 14: NetBIOS name screen
15. Paths Configuration
Leave default paths for:
Database
Log files
SYSVOL
Click Next
Screenshot 15: AD DS paths
16. Review & Prerequisite Check
Primary NIC :
IP Address: 192.168.10.100
Subnet Mask: 255.255.255.0
Gateway: 192.168.10.1
Preferred DNS: 192.168.10.100
---------------------------------------------------------------------------------------------------------
Secondary NIC:
IP Address: 192.168.20.100
Subnet Mask: 255.255.255.0
Gateway: 192.168.10.1
Preferred DNS: 192.168.20.100
Screenshot 1: Server hostname & IP configuration
2. Open Server Manager
Log in to the Windows Server
Open Server Manager from the taskbar or Start Menu
Screenshot 2: Server Manager dashboard
3. Add Roles and Features
In Server Manager, click Manage → Add Roles and Features
Click Next on the Before You Begin screen
Screenshot 3: Add Roles and Features wizard
Select Role-based or feature-based installation
Click Next
Screenshot 4: Installation type selection
5. Server Selection
Select your server from the server pool
Click Next
Screenshot 5: Server selection screen
6. Select Server Roles
Check Active Directory Domain Services
When prompted, click Add Features
Also ensure DNS Server is selected
Click Next
Screenshot 6: Selecting AD DS and DNS roles
Leave default features selected
Click Next
Screenshot 7: Features screen
8. AD DS Information
Click Next
Screenshot 8: AD DS overview screen
9. Confirm and Install
Click Install
Wait for installation to complete
Screenshot 9: Installation progress
10. Promote Server to Domain Controller
After installation, click the notification flag in Server Manager
Select Promote this server to a domain controller
Screenshot 10: Promote to Domain Controller option
11. Deployment Configuration
Select Add a new forest
Enter the root domain name (example: ppc.com)
Click Next
Screenshot 11: New forest configuration
12. Domain Controller Options
Select:
Forest Functional Level
Domain Functional Level
DNS Server
Global Catalog
Set the DSRM password
Forest Functional Level
Domain Functional Level
DNS Server
Global Catalog
Set the DSRM password
Click Next
Screenshot 12: Domain controller options
13. DNS Options
Screenshot 12: Domain controller options
13. DNS Options
Ignore the delegation warning (if shown)
Click Next
Screenshot 13: DNS options screen
Click Next
Screenshot 13: DNS options screen
14. NetBIOS Name
Accept default NetBIOS name or modify if required
Click Next
Screenshot 14: NetBIOS name screen
15. Paths Configuration
Leave default paths for:
Database
Log files
SYSVOL
Click Next
Screenshot 15: AD DS paths
16. Review & Prerequisite Check
Review configuration summary
Click Next to run prerequisite checks
Click Install once checks pass
Screenshot 16: Prerequisite check passed
Click Next to run prerequisite checks
Click Install once checks pass
Screenshot 16: Prerequisite check passed
17. Server Restart
Server will automatically restart after installation
18. Verify Active Directory Installation
Log in after reboot
Open Server Manager → Tools → Active Directory Users and Computers
Confirm domain and domain controller are visible
Screenshot 18: Active Directory Users and Computers
19. Verify DNS Configuration
Log in after reboot
Open Server Manager → Tools → Active Directory Users and Computers
Confirm domain and domain controller are visible
Screenshot 18: Active Directory Users and Computers
19. Verify DNS Configuration
Open Server Manager → Tools → DNS
Expand Forward Lookup Zones
Confirm domain zone is created automatically
Screenshot 19: DNS forward lookup zone
20. Configure Reverse Lookup Zone
Expand Forward Lookup Zones
Confirm domain zone is created automatically
Screenshot 19: DNS forward lookup zone
20. Configure Reverse Lookup Zone
Right-click Reverse Lookup Zones → New Zone
Select Primary Zone
Check Store the zone in Active Directory
Select To all DNS servers running on domain controllers
Choose IPv4 Reverse Lookup Zone
Enter Network ID:
192.168.10
192.168.20
Finish the wizard
Screenshot 20: Reverse lookup zone configuration
Select Primary Zone
Check Store the zone in Active Directory
Select To all DNS servers running on domain controllers
Choose IPv4 Reverse Lookup Zone
Enter Network ID:
192.168.10
192.168.20
Finish the wizard
Screenshot 20: Reverse lookup zone configuration
21. Final Verification
Reverse lookup zone is created and running
DNS records are resolving correctly
Domain controller is operational
Screenshot 21: Reverse lookup zone running
Conclusion
Reverse lookup zone is created and running
DNS records are resolving correctly
Domain controller is operational
Screenshot 21: Reverse lookup zone running
Conclusion
Active Directory Domain Services and DNS have been successfully installed and configured. The server is now acting as a Domain Controller and is ready for user, group, and computer management.
No comments:
Post a Comment