Breaking News

Wednesday, March 16, 2011

How to create a new Active Directory Domain Controller in Windows Server 2008 R2

If you have installed Windows Server 2008 R2 for the first time settings up a active directory controller can be tricky if you haven’t done it before. The problem is you don’t have direct options in the menus which lets you create controller right away.
Before you start settings up the domain controller make sure your local administrator has a strong password setup which is most of the cases is blank by default. This is one of the first error you will receive before you start setting up the new forest.
How to change password for Local Administrator in Windows Server 2008 R2
  • Type control userpasswords2 in run prompt of start menu. Hit enter.
  • This will open User Accounts Window. First check on label which says Users should use Alt + ctrl + Del to enter password
  • Then select the user account which says Administrator and belongs to the group Administrator.
  • Click on the Reset Password Button. Add a strong password and save then exit.
Password change for local administrator
Once you done with this we are ready to create our first active directory on the brand new server. Remember once you create Active directory here, this will become the host and other computers can join this.

Instructions to Create Active Directory Controller in Windows Server 2008 R2

Launch the Active Directory Domain Service Installation Wizard :

Type in run prompt, dcpromo. This will then launch the service which will check and install Active Directory Binaries if required. Done that, you should see Active Directory Domain Service Installation Wizard.
Active Directory Wizard First Run
In the active Directory Wizard you can choose Advance Mode or normal. There is no issue even if you create without advance mode as settings can be changed later on. Click next and you will receive notification window which tells you about Operating System Compatibility. If you are system admin just make sure what it says.
ADDS Start
Create new domain in new domain forest :
Since this is the first time we are creating this, choose the option which says Create a new domain in a new forest. Click Next. Now if you did followed the instructions to set the local administrator password to a strong one, you should not recieve any error. The reason for setting up a password is, as the local administrator becomes the owner of the new Active Directory it must be under secured policies.
ADDS Create New domain
Click next to enter the new domain name or FQDN of the forest root domain which can be anything like technospot.ten or xyz.com. Before creating it checks for any existing domains to make sure there is no conflict.
Name of Forest Root Domain
Next is to select the Forest Functional Level which should be same as your Operating System i.e. Windows Server 2008 R2 for this case.
Adds Forest Functional Level
Configuring the DNS
Next screen will give you option to configure the DNS. By default if you have dynamic IP set, it will ask to setup a static ip which is always a preferred option.
Adds Controller Options
Final Setup
We are almost done. Next step setups log location which is important and then it gives you a biref overview of settings which will be used to create the domain controller. You can export it if you want.
ADDS Logs
After this the machine will reboot and your login screen will change with your username show as domain\username which in this case is Technospot\Domain.
Domain User Login
This concludes our installation and creation of Active Directory Services and Setting up of DNS. Once you reboot and login there will more to configure in settings and that is completely different aspect.


2 comments:

  1. What a wonderful application? Now I have got it. How you have got it?

    ReplyDelete
  2. This is nice and details article, but I want to know is this method works on windows 7?

    ReplyDelete

Designed By