Skip to main content

How to create a new Active Directory Domain Controller in Windows Server 2008 R2

If you have installed Windows Server 2008 R2 for the first time settings up a active directory controller can be tricky if you haven’t done it before. The problem is you don’t have direct options in the menus which lets you create controller right away.
Before you start settings up the domain controller make sure your local administrator has a strong password setup which is most of the cases is blank by default. This is one of the first error you will receive before you start setting up the new forest.
How to change password for Local Administrator in Windows Server 2008 R2
  • Type control userpasswords2 in run prompt of start menu. Hit enter.
  • This will open User Accounts Window. First check on label which says Users should use Alt + ctrl + Del to enter password
  • Then select the user account which says Administrator and belongs to the group Administrator.
  • Click on the Reset Password Button. Add a strong password and save then exit.
Password change for local administrator
Once you done with this we are ready to create our first active directory on the brand new server. Remember once you create Active directory here, this will become the host and other computers can join this.

Instructions to Create Active Directory Controller in Windows Server 2008 R2

Launch the Active Directory Domain Service Installation Wizard :

Type in run prompt, dcpromo. This will then launch the service which will check and install Active Directory Binaries if required. Done that, you should see Active Directory Domain Service Installation Wizard.
Active Directory Wizard First Run
In the active Directory Wizard you can choose Advance Mode or normal. There is no issue even if you create without advance mode as settings can be changed later on. Click next and you will receive notification window which tells you about Operating System Compatibility. If you are system admin just make sure what it says.
ADDS Start
Create new domain in new domain forest :
Since this is the first time we are creating this, choose the option which says Create a new domain in a new forest. Click Next. Now if you did followed the instructions to set the local administrator password to a strong one, you should not recieve any error. The reason for setting up a password is, as the local administrator becomes the owner of the new Active Directory it must be under secured policies.
ADDS Create New domain
Click next to enter the new domain name or FQDN of the forest root domain which can be anything like technospot.ten or Before creating it checks for any existing domains to make sure there is no conflict.
Name of Forest Root Domain
Next is to select the Forest Functional Level which should be same as your Operating System i.e. Windows Server 2008 R2 for this case.
Adds Forest Functional Level
Configuring the DNS
Next screen will give you option to configure the DNS. By default if you have dynamic IP set, it will ask to setup a static ip which is always a preferred option.
Adds Controller Options
Final Setup
We are almost done. Next step setups log location which is important and then it gives you a biref overview of settings which will be used to create the domain controller. You can export it if you want.
After this the machine will reboot and your login screen will change with your username show as domain\username which in this case is Technospot\Domain.
Domain User Login
This concludes our installation and creation of Active Directory Services and Setting up of DNS. Once you reboot and login there will more to configure in settings and that is completely different aspect.


  1. What a wonderful application? Now I have got it. How you have got it?

  2. This is nice and details article, but I want to know is this method works on windows 7?


Post a Comment

Popular posts from this blog

The 101 Most Useful Websites

Kingston Launches HyperX Plug and Play RAM for Intel PCs

Kingston has released its new HyperX plug and play (PnP) series which is a collection of memory kits that utilize modules which are capable of working at frequencies of either 1,600 MHz or 1,866 MHz. This memory module is designed specifically for use with desktops and laptops powered by the latest generation of Intel Core i5 or Core i7 central processing units.

There are six kits in total, all of them composed of two kits, meaning that modules of 2 GB and 4 GB are used. There are two Dual in-line Memory Module (DIMM) kits, while the other four come in the Small Outline In-line Memory Module (SODIMM) form factor.

The modules are programmed using Joint Electron Devices Engineering Council (JEDEC) compliant settings, allowing 1600MHz and 1866MHz frequency support. It is as simple as plugging in the memory and turning on the machine, as the system automatically recognizes faster memory speed with no further basic input/output system (BIOS) settings required.

Mark Tekunoff, …

DriveLocker: Hide Any Hard Drive Partition on Your Computer

I have partitioned my hard drive into 2 parts: C and D. C, as is normally, is dedicated for installation files and such. My D drive is dedicated to songs and all types of personal files. Since I often have friends over who use my computer, I was looking for a way to hide my personal drive from them. I need a way to hide my D drive. And that way was excellently provided by DriveLocker. [You may also try: Restrict Users From Opening a Hard Disk Partition] DriveLocker is a wonderful program for Windows computers that hides any hard drive partition of your choice. Through the images and description below, you will see how it works. First of all, you will need to download the program’s ZIP archive that is only 23KB large. Then you will need to extract the executable within this archive. Opening this EXE file will run the program, no installation will be required. This is what the program looked like on my computer: Initially both drives will be unchecked. This means that I can view both my dri…