Max-Solution

Active Directory Guide

Step-by-step guide on adding ADDS and DNS roles on Windows Server 2012

Syahiran10/18/2012

Table of Content

1 Introduction................................................................................................................1

2 Adding DNS Server Role.............................................................................................2

3 Adding Active Directory Domain Services Role........................................................13

4 Promoting server to a Domain Controller (DC).........................................................24

5 Configuration...........................................................................................................33

1 Introduction

This guide will show you step-by-step guide on how to add Active Directory Domain Services and DNS Server role on Microsoft Windows Server 2012.

Pre-requisite for this guide:

Install Microsoft Windows Server 2012 Rename the machine

Make sure you have connection to network Set static IP Address (As picture below, note that I didn’t define DNS

since it is going to be a DNS Server. We will get to that part later on)

1 | P a g e

2 Adding DNS Server Role

2.1 Go to Server Manager (should run after the server is started) and click on Add roles and features.

2.2 Click Next

2.3 Choose Role-based or feature-based installation and click Next.

2.4 Choose Select a server from the server pool and make sure you have choose the local server from the Server Pool table. (In this guide there is only one server shown which is the local server since no other server(s) are added to the Server Pool.)

2.5 On Server Roles section mark DNS Server.

2.6 Add Roles and Features box will pop-up, click Add Features and click Next.

2.7 On Features section click Next.

2.8 On DNS Server section click next.

2.9 On Confirmation section mark Restart the destination server automatically if required if you want to auto-restart after installation or unmark if you want to restart manually. Click Install.

2.10 Installation has started. Progress bar will be displayed to show installation progress.

2.11 Installation has completed. You will see message Installation succeeded on SERVERNAME under the progress bar. Click Close.

3 Adding Active Directory Domain Services Role

3.1 Go to Server Manager (You can find it by going to start menu and type “server manager”) and click on Add roles and features. (Notice that under ROLES AND SERVER GROUPS, DNS Role’s box will appear.)

3.2 On Before you begin section, click Next.

3.3 Choose Role-based or feature-based installation and click Next.

3.4 Choose Select a server from the server pool and make sure you have choose the local server from the Server Pool table. (In this guide there is only one server shown which is the local server since no other server(s) are added to the

Server Pool.)

3.5 On Server Roles section mark Active Directory Domain Services.

3.6 Add Roles and Features box will pop-up, click Add Features and click Next.

3.7 On Features section, click Next.

3.8 On AD DS section, click Next.

3.9 On Confirmation section mark Restart the destination server automatically if required if you want to auto-restart after installation or unmark if you want to restart manually. Click Install.

3.10 Installation has started. Progress bar will be displayed to show installation progress.

3.11 Installation has completed. You will see message “Configuration required. Installation succeeded on SERVERNAME” under the progress bar. Click Close.

4 Promoting server to a Domain Controller (DC)

4.1 Open Server Manager. Click on the task Flag that has warning symbol on top-right of Server Manager. Drop down box will appear with boxes of tasks done and tasks that requires attention. Notice that the box with Warning symbol prompting for Post-deployment Configuration. Click on Promote this server to a domain controller link.

4.2 Active Directory Domain Services Configuration Wizard will appear. On Deployment Configuration. Tick Add a new forest since this is a fresh deployment. Type-in your intended Root domain name. Click Next.

4.3 On Domain Controller Options. Select Forest functionality level and Domain functionality level. (Domain functionality level should be higher that Forest functionality level, notice that the Wizard doesn’t allow Domain functionality level to be lower than Forest functionality level). Type in Directory Services Restore Mode (DRSM) password. Click Next.

4.4 On DNS Options section. Click Next. ()

4.5 On Additional Options section. NetBIOS domain name will automatically appear. Click Next.

4.6 On Paths section. Specify the location for Database, Log files and SYSVOL. In this guide we are going to leave it to default. Click Next.

4.7 On Review Options section. Click Next.

4.8 On Prerequisites Check section. Make sure all prerequisite check passed successfully. Click Install.

4.9 Promoted to Domain Controller.

5 Configuration

We have few configuration to be done in order for our AD DNS Server to work properly

5.1 Go to Control Panel and click on View network status and tasks

5.2 Now click on your network connections. (In this guide it is Ethernet.)

5.3 Click on Properties.

5.4 Click on Internet Protocol Version 4 (TCP/IPv4) and click Properties.

5.5 Change DNS server addresses to the servers IP Address and click OK.

5.6 Click on Internet Protocol Version 6 (TCP/IPv6) and click Properties.

a

5.7 Tick on Obtain an IPv6 address automatically and Obtain DNS server address automatically. Click OK.

5.8 Click Start button on your keyboard. Click on DNS which will open DNS Manager .

5.9 Right-click on Reverse Lookup Zone and click New Zone.

5.10 New Zone Wizard will pop-up. On welcome screen click Next.

5.11 Tick Primary Zone. Tick Store the zone in Active Directory. Click Next.

5.12 Tick To all DNS servers running on domain controllers in this forest: forestname . (syah.net for this guide) Click Next.

5.13 Choose IPv4 Reverse Lookup Zone and click Next.

5.14 Type in the Network ID and click Next.

5.15 Choose Allow only secure dynamic updates and click Next.

5.16 Click Finish to complete.

5.17 Go back to DNS Manager, expand Forward Lookup Zone and click on domain name (syah.net for this guide). On right side of the console folders and list of records will appear,

right-click on your AD servername (adsvr for this guide) and click Properties.

5.18 Servername Properties will pop-up (adsvr for this guide). Tick Update associated pointer (PTR) record. Click OK.

5.19 To ensure Name Server is pointed to the right server open command prompt (click Start button on keyboard and type in “cmd”). Type “nslookup” and click Enter. Default Server should appear as FQDN of the server and IPv4 address for Address.

5.20 To check FSMO (Flexible Single Master Operation) Roles. Open Command Prompt again and type in “netdom query fsmo” and hit Enter.

The End