module 3_lecture 3 - installing domain controllers
TRANSCRIPT
![Page 1: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/1.jpg)
SYSTEM ADMINISTRATIONINSTALLING DOMAIN CONTROLLERS
Dr. Zeeshan Bhatti
BSIT-IV
Module 3: Lecture 3
![Page 2: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/2.jpg)
PART-II
Installing Domain Controller
2
![Page 3: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/3.jpg)
DOMAIN CONTROLLER (DC).
One of the greatest features of Windows Server 2003 is its ability to be a Domain Controller (DC).
The full features of a domain are beyond the scope of this workshop, but some of its most well known features are its ability to store user names and passwords on a central computer (the Domain Controller) or computers (several Domain Controllers).
In this tutorial we will cover the "promoting" (or creating) of the first DC in a domain. This will include DNS installation, because without DNS the client computers wouldn't know who the DC is.
You can host DNS on a different server, but we'll only deal with the basics.
3
![Page 4: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/4.jpg)
WHAT IS A DIRECTORY SERVICE?
A service that helps track and locate objects on a
network
A service that helps track and locate objects on a
network
Active Directory Management
UsersUsersServicesServicesWorkstationsWorkstations FilesFiles
The core function of any directory service is that it lets you find information on a
network and make your own data network-accessible.
4
![Page 5: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/5.jpg)
ACTIVE DIRECTORY DOMAINS
Boundary of
Authentication
Boundary of
Policies
Boundary of Replication
IIUM.edu.my
• Domains represent logical partitions within Active Directory for security and directory
replication
• Microsoft.com” is an example of a domain name.
• There is a one-to-one correspondence between Active Directory domains and DNS domains.5
![Page 6: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/6.jpg)
ACTIVE DIRECTORY TREES
CONTOSO.COM
US.CONTOSO.COM
Shared
Schema
Configuration
Global CatalogOHIO.US.CONTOSO.COM
• A tree is a grouping of domains that forms a contiguous namespace.
• A contiguous namespace is a set of domain names in which each child adds one or more
identifiers to the beginning of the parent DNS name.
• For example, if the parent domain was iium.edu.my and the child domain was
cita.iium.edu.my, these two would form a contiguous namespace. 6
![Page 7: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/7.jpg)
ACTIVE DIRECTORY FORESTS
US.CONTOSO.COM
FABRIKAM.COM
UK.FABRIKAM.COM
CONTOSO.COM
Schema ConfigurationGlobal
Catalog• A forest is composed of one or more trees.
• Unlike a tree, a forest can contain several noncontiguous namespaces
7
![Page 8: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/8.jpg)
STARTING THE SERVICES
Type “dcpromo” and click “OK”.
You will see the first window of the wizard. As it suggests, I suggest reading the help associated with Active Directory. After this, click "Next"
8
![Page 9: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/9.jpg)
Click "Next" on the compatibility window, and in the next window keep the default option of "Domain Controller for a new domain" selected, and click "Next"
9
![Page 10: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/10.jpg)
DOMAIN CONTROLLER
Now we will install the Domain Controller, select this service from the Manage Server.
We want to create a new domain.
10
![Page 11: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/11.jpg)
DOMAIN FOREST
In Windows Server, you can connect your domain to an existing domain structure, or you can start from scratch.
We will create a new forest for our domain.
11
![Page 12: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/12.jpg)
DNSDNS is integrated with the Domain Controller.
Select the second option – Have the computer install DNS for you.
12
![Page 13: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/13.jpg)
DOMAIN NAMENow you need to select a domain name. It should be the same name you used in the DHCP (i.e. TIHE.ORG)
13
![Page 14: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/14.jpg)
NETBIOS DOMAIN NAMEThe computer will choose a netbios name for your domain. Click next.
Database and Log Folders The computer will select a path for this entry. Click next.
14
![Page 15: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/15.jpg)
Shared System Volume The SYSVOL folder is a public share, where things like .MSI software
packages can be kept when you will distribute packages
The computer will select a DEFAULT path for this entry. Click next.
15
![Page 16: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/16.jpg)
DNS REGISTRATIONNow we will get a message that basically says that you will need a DNS server in order for everything to work the way we want it .
As mentioned earlier, we will install the DNS server on this same machine , but it can be installed elsewhere. So keep the default selection of "Install and configure“ second option, and click “Next”.
16
![Page 17: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/17.jpg)
PERMISSIONSwe keep the default of "Permissions compatible only with Windows 2000 or Windows Server 2003 operating systems" and click "Next"
17
![Page 18: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/18.jpg)
Restore Mode Password The restore mode password is the single password that all administrators
hope to never use, however they should also never forget it because this is
the single password that might save a failed server.
Make sure it's easy to remember but difficult to guess
18
![Page 19: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/19.jpg)
SUMMARYNow we will see a summary of what will happen. Make sure it's all correct because changing it afterwards can prove to be difficult.
19
![Page 20: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/20.jpg)
After the previous next was clicked, the actual process occurs. This can take several minutes. It's likely that you will be prompted for your Windows Server 2003 CD (for DNS) so have it handy
20
![Page 21: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/21.jpg)
GIVE STATIC IP
If your computer has a dynamically assigned address (from DHCP) you will be prompted to give it a static IP address. Click ok, and then in the Local Area Connection properties, click "Internet Protocol (TCP/IP)" and then "Properties"
21
![Page 22: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/22.jpg)
In the next window select "Use the following IP address" and select the information that you will use for your domain (and 127.0.0.1 for the primary DNS, because your computer will host DNS. I still suggest setting up an alternate as well.) Click "OK" and then "Close" on the next window
22
![Page 23: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/23.jpg)
And after a while you will see…… And we're finished.
23
![Page 24: Module 3_Lecture 3 - Installing Domain Controllers](https://reader031.vdocuments.net/reader031/viewer/2022020418/5695d4d21a28ab9b02a2e77e/html5/thumbnails/24.jpg)
THANKYOU
Q & A
For My Slides and Handouts
http://zeeshanacademy.blogspot.com/
https://www.facebook.com/drzeeshanacademy