Labs‎ > ‎Windows Labs‎ > ‎

Windows Lab 03 - Installing Active Directory

Introduction

In this lab we will be promoting both servers to Domain Controllers.  We will then add each server to each Server Manager so we can centrally manage our servers.  The high level steps are the following:
  • Install Active Directory Domain Services on Server01
  • Promote Server01 to a Domain Controller for a new domain
  • Join Server02 to the new domain
  • Add Server01 to Server02's Server Manager
  • Install Active Directory Domain Services on Server02
  • Promote Server02 to a Domain Controller for an existing domain
  • Add Server02 to Server01's Server Manager


Installing Active Directory on Server01

At this time we should have two Windows servers named Server01 and Server02.  Both servers should be able to talk to each other over our network.  Now we'll install the Active Directory Domain Services role on Server01.  This will only install the role, once we are done we will promote the server, turning it into a Domain Controller for a new domain.  Install the Active Directory Domain Services role on Server01.  
Server01 - Install Domain Services

Promote Server01 to a Domain Controller for a New Domain

Server01 should have the role Active Directory Domain Services installed.  The next step will be to promote the server to a domain controller.  If the required option to promote the server is missing from the Server Manager then click the refresh button at the top.
  • Add a new forest with a root domain name of oakforest.org
  • Set the DSRM password to P@ssw0rd
  • Ignore the error about DNS, it will be installed for us.
  • Set the NetBIOS name to OAKFOREST.
  • Use the defaults for the file locations.
Finish the wizard and let the server restart when done.
Server01 - Promote Domain Controller

Join Server02 to the New Domain

Once Server01 is back up and running switch to Server02 and join it to the oakforest.org domain.  Restart when prompted.
Server02 - Join Domain

When Server02 starts back up you will need to log into the domain instead of using the local account. Log into Server02 with the domain using the User Principal Name (UPN) of the administrator account.  The UPN is the username in a format that includes the domain as well.  The format is the same as an email address, the UPN is administrator@oakforest.org.
Server02 - Log into Domain

Add Server01 to Server02's Server Manager

One of the advantages of the new Server Manager is the ability to remotely manage your servers. Currently Server Manager doesn't have any information about AD on the left side. Add Server01 to Server Manger and notice how the left panel changes.
Server02 - Add Server01 to Server Manager

Install Active Directory Domain Services on Server02

At this time we have two servers.  One is a Domain Controller, and the other is a Member Server.  We are going to turn Server02 into a Domain Controller as well.  Install the Active Directory Domain Services role on Server02.
Server02 - Install Domain Services

Promote Server02 to a Domain Controller for an Existing Domain

  • Add a domain controller to an existing forest.
  • DO NOT install DNS, set the DSRM password to P@ssw0rd
  • Use the defaults for the file locations.
Finish the wizard and let the server restart when done.   Log into the domain when it comes back up and proceed to the next step.
Server02 - Promote Domain Controller

Add Server02 to Server01's Server Manager

Once Server02 is back up, switch to Server01 and log in.  Add Server02 to Server Manager.
Server01 - Add Server01 to Server Manager

Questions

Answer the lab questions

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10