Welcome to TechRiz Where tech enthusiasts come for the latest tech news, Free downloads, free tutorials, articles and how to's. Description: This is the TechRiz How to's page. Visit every day to stay informed about the latest tech news, from security alerts to Hardware and software updates. Enjoy your stay. Installing Active Directory on Windows 2008 Server By Rizwan - January 28, 2009 Windows Server 2008, Server Core installation does not include the traditional full graphical user interface (GUI). Therefore, once you have configured the server, you can only manage it locally at a command prompt, or remotely using a Terminal Server connection. Server Core can host a few roles. One of these roles can be the Active Directory Directory Services (AD DS) role, where the server will act as a Domain Controller for an Active Directory domain. This Domain Controller (or DC for short) can be used as one of the following DC scenarios:
Now, one might wonder how do you go about managing that DC if it were to run on a GUI-less server core. Well, the answer for that is based on 3 parts. The first part is to get your server core up and running. In order to do that, read my server core articles under the Related Articles section below. To make life easier on you, I've also written about a GUI tool called CoreConfigurator. The second part is the management of the specific Active Directory DS role that you're about to install on the core. That can be easily done from one of your regular Windows Server 2008 DCs, or even from a workstation computer running Windows Vista. The third part is the process of the installation of the Active Directory DS role. It is done through the Active Directory Domain Services Installation Wizard (DCPROMO.exe). It performs the following tasks:
Or, if you run it on a server that is already configured as a DC:
As noted above, since server core does not have a GUI, you will need to manually configure the DCPROMO settings and run them as an unattended process. So, now let's go to the business of actually installing the role. In order to install Active Directory DS on your server core machine you will need to perform the following tasks: 1. Configure an unattend text file, containing the instructions for the DCPROMO process 2. Configure the right server core settings + meet the DCPROMO requirements 3. Copy that file to the server core machine 4. Run the DCPROMO process with the unattend file 5. Reboot the computer Let's begin... Configure an unattend text fileFirst, let's create the unattend, or answer, file. The unattend file is an ASCII text file that provides automated user input for each page of the Active Directory Domain Services Installation Wizard. One method of creating the unattend file is by editing a sample file you've created before or obtained from other sources (like this website). This is an example of such an Unattend file. In this example you will create an additional DC for a domain called petrilab.local:
[DCINSTALL]
UserName=administrator UserDomain=petrilab Password=P@ssw0rd1 SiteName=Default-First-Site-Name ReplicaOrNewDomain=replica DatabasePath="%systemroot%'NTDS" LogPath="%systemroot%'NTDS" SYSVOLPath="%systemroot%'SYSVOL" InstallDNS=yes ConfirmGC=yes SafeModeAdminPassword=P@ssw0rd1 RebootOnCompletion=yes Another method is by creating it through the DCPROMO wizard that you've ran on a different server. Configure the right server core settingsAfter that you need to make sure the core machine is properly configured. 1. Perform any configuration setting that you require (tasks such as changing computer name, changing and configure IP address, subnet mask, default gateway, DNS address, firewall settings, configuring remote desktop and so on). 2. After changing the required server configuration, make sure that for the task of creating it as a DC – you have the following requirements in place:
And most importantly, do not forget:
Copy the unattend file to the server core machineNow you need to copy the unattend file from wherever you've stored it. You can run it from a network location but I prefer to have it locally on the core machine. You can use the NET USE command on server core to map to a network path and copy the file to the local drive. You can also use a regular server/workstation to graphically access the core's C$ drive (for example) and copy the file to that location. Run the DCPROMO processNext you need to manually run DCPROMO. To run the Active Directory Domain Services Installation Wizard in unattended mode, use the following command at a command prompt:
dcpromo /unattend:
Reboot the machineIn order to reboot the server core machine type the following text in the command prompt and press Enter.
shutdown /r /t 0
After the server comes back online you'll have yourself a new and shining DC running on a server core machine. Running it all from one command lineUsing an unattended file for DCPROMO is fine, and if you've prepared one handy it's quite easy. However, there's another method. DCPROMO will accept command line switches, and if provided correctly, it will use them to perform the required tasks. For example, running the following command:
Dcpromo /unattend /replicaOrnewDomain:replica
/replicaDomainDNSName:petrilab.local /ConfirmGC:yes
/username:petrilab'administrator /Password:*
/safeModeAdminPassword:P@ssw0rd1
Will run DCPROMO and add the server as a Global Catalog server to the petrilab.local domain. The Domain restore Mode password will be set to P@ssw0rd1. You will be asked to enter the domain administrator password when the command is run. The server will reboot itself as part of the install. BTW, to see the construction of the command we can enter the following command. It will create a text file containing the required information.
Dcpromo /?:Promotion > promotion.txt & promotion.txt
If you got any problem in following this guide feel free to ask questions by sending email to techriz@gmail.com. |
This site is viewed:
© Copyright Techriz, 2009. All Rights Reserved