Objectives

Add a Replica domain controller to a domain Resolve Active Directory replication issues Perform System State backup and restore

Requirements

Active Directory Installed on the odd numbers computer The second server installed as a member server.

Configuration Summary

Textbook Reference Role Domain

RWDCxx (Odd-numbered computers) Domain Controller (DC) lastname.local

RWDCyy (Even-numbered computers) Member Server to be installed as a Domain controller

lastname.local

SCDCxx (Server Core Installation) Domain Controller (DC) lastname.local

Procedure

Complete Project 11-1, as described on RWDC02

Include a screenshot demonstrating the AD installation after step 17 then …Create an OU called Administration in the lastname.local domain from the RWDC02

The relevant screenshots (of project 11-1) are shown below:

Logging with user Administrator on member server RWDC02:

COMP2017 Server Administration Unit #11: Active Directory Troubleshooting

Name:____Aryan Soi___________________

Starting with Active directory installation for creating Additional DC:

Finalizing the creation of ADDITIONAL DOMAIN CONTROLLER:

An OU called “Administration” created:

Complete Project 11-3, as described from RWDC01Ignore step 6Choose drive c: and System state to restoreSelect any backup drive destination that works but preferably another hard drive or child server- Verify your child server computer name and write it down.- Create a share folder on drive C: of the child server and name it- When choosing your destination for the backup. Select remote share and type the

computer name and share name from above as follows”\\computername\sharename

Include a screenshot demonstrating backup success at the end of Part B

The relevant screenshot of Project 11-3 are shown below:

Logged with user account Administrator:

Taking backup to save in shared folder “backup” on computer “RWDC04”:

The backup completed successfully:

Complete Project 11-5, as described.See step 2/3 in 11.4 to enable DS Restore mode at next rebootInclude a screenshot after step 2 showing deletion of administration OU.Screen shot of restore success after step 11Screen shot of restored OU after step 14.

The relevant screenshots of Project 11-5 are shown below:

Logged on with Administrator:

The below screenshot illustrates deletion of OU “Administration”:

The below screenshot illustrates the success of restore process:

The below screenshot illustrates successful restoration of OU “Administration”:

QUESTIONS

1) Explain the difference between an On-line and off-line defragmentation.

Active Directory automatically performs online defragmentation of the database at certain intervals (by default, every 12 hours) as part of the Garbage Collection process. Online defragmentation does not reduce the size of the database file (Ntds.dit), but instead optimizes data storage in the database and reclaims space in the directory for new objects.

Performing an offline defragmentation creates a new, compacted version of the database file. Depending on how fragmented the original database file was, the new file may be considerably smaller.

2) Explain the difference between a non-authoritative and authoritative restore.

Non-Authoritative RestorationUsed most commonly in cases when a DC because of a hardware or software related reasons, this is the default directory services restore mode selection. In this mode, the operating system restores the domain controller’s contents from the backup. After this, the domain controller then through replication receives all directory changes that have been made since the backup from the other domain controllers in the network.

Authoritative RestorationAn authoritative restore is most commonly used in cases in which a change was made within the directory that must be reversed, such as deleting an organization unit by mistake. This process restores the DC from the backup and then replicates to and overwrites all other domain controllers in the network to match the restored DC. The especially valuable thing about this is that you can choose to only make certain objects within the directory authoritative. For example, if you delete an OU by mistake you can choose to make it authoritative. This will replicate the deleted OU back to all of the other DC’s in the network and then use all of the other information from these other DC’s to update the newly restored server back up to date.

Evaluation (10 Marks)Completion of Projects 10MLesson Questions 2M