Scribd Logo
Unggah

Selamat datang di Scribd!

  • AD 2012 Server Step by Step Guide To Se..

    Diunggah oleh

    Sunil Kumar
    12 tayangan28 halaman
    AD 2012 Server Step by Step Guide to Se

    Judul Asli

    AD 2012 Server Step by Step Guide to Se..

    Hak Cipta

    © © All Rights Reserved

    Format Tersedia

    PDF atau baca online dari Scribd

    Apakah menurut Anda dokumen ini bermanfaat?

    Apakah konten ini tidak pantas?

    Laporkan Dokumen Ini
    AD 2012 Server Step by Step Guide to Se

    Hak Cipta:

    © All Rights Reserved
    Unduh sebagai PDF atau baca online dari Scribd
    Tandai sebagai konten tidak pantas
    12 tayangan28 halaman

    AD 2012 Server Step by Step Guide To Se..

    Diunggah oleh

    Sunil Kumar
    AD 2012 Server Step by Step Guide to Se

    Hak Cipta:

    © All Rights Reserved
    Unduh sebagai PDF atau baca online dari Scribd
    Tandai sebagai konten tidak pantas
    dari 28
    592015 ‘Step by Stap guide to sep Acive Directory on Windows Server 2012RebaiAdmin| RebelAdmin REBELADMIN STEP BY STEP GUIDE TO SETUP ACTIVE DIRECTORY ON WINDOWS SERVER 2012 This tutorial will explain how to install AD on server 2012 R2. Requirement: Minimum: 1.4 Ghz 64-bit processor Minimum: 512 MB RAM Minimum: 32 GB or greater The first step is to get server 2012 install on a server. it is very similar to server 2008 install and in one of my previous posts i have discribe how to do the install in details. ipstwunw rbeladmin com/2014CTstop by stop guide sotup-anve- dreciry-on-windows-sorver-20121 et 592015 ‘Step by Stp guide to sep Acsive Directory on Windows Server 2012RebaiAdmin| RebelAdmin fl Windo Next thing we need to do is get network interfaces configured. it is obvious to use static ip address for the server. Since the server will be act as DNS server, for DNS server field you can use local host address 127.0.0.1 Intemet Protocol Version 4 (TCP/IPv4) Properties EEE General ‘You can get IP settings assigned automaticaly if your network supports this capabity. Otherwise, you need to ask your network administrator for the appropriate IP settings © Obtain an P address automaticaly © Use the foloning IP address: BP adcress: 3S. 64.152. 80 Subnet mask 255.255 .255 224 Defouit gateway: 3. 64 152. 65 ver addre © Use the folowing ONS server addresses: Preferred ONS server: wo Alternate DNS server: [vatdate settings upon exit ipstwunw rbeladmin com/2014CTstop by stop guide sotup-anve- dreciry-on-windows-sorver-20121 zat 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin It is recommend to use meaning full name as the server name. in demo i renamed it as "DCPR1" ‘Contd Penal > Span ond Suey + le © 6] [Sench Conver Peal View basic information about your computer © eice onan a ora ny S202 2 sands © Armed tem stings ewaitventCoponten atightreanes MM Windows Server2012 R2 fri rcesee rs eon) CPU EH O24HE 238M @ poe) inedmemon (AND 32868 sent {st opting Sytem hed procter rae ou fo pevor Touch rp ht oh ay Compete Sr md wero tings Cempaernime CPR oe paareesrere Cm Core deci wear vwonectour Windowa isnot activated. Read the Miao Sftmare License Terms ae Product: 00252-7000-0000-AA525 Activate Window After this we are ready to start on the AD install. As per my next step i will start DNS role install first, This is not must to do, you also can install dns during the AD install. But as per best practice i always prefer to add DNS role first. To do this we need to start "Server Manager” it can opne using shortcut on task bar or from Start > Server Manager ipstwunw rbeladmin com/2014CTstop by stop guide sotup-anve- dreciry-on-windows-sorver-20121 592015 ‘Step by Stp guide to sep Acsive Directory on Windows Server 2012RebaiAdmin| RebelAdmin Be pean mgt sete @ configure this toca ig flee Stora Sends 1] | a teaser Nl maison , @ wosossony D woe | | D woray Then it will load the "Add Role Wizard", Click next to continue ipstwunw rbeladmin com/2014CTstop by stop guide sotup-anve- dreciry-on-windows-sorver-20121 aot 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin DesrmaToN eavER ‘This wizard helps you instal oes, role services oF features You determine which oes oe services of {features to instal based onthe computing needs of yout arganzaten such as sharing document of hosting 8 website. To remove roles tle services, or features: Start the Remote Roles re Featres Wears Bore you contin, vy thatthe folowing tasks have been compte ‘Te Adminstrator acount has a strong password + Network settings, such a static Paaereses, ar configures +The most eurrentsecurty upeats from Windows Update are installed if you must very that any ofthe preceding prerequistes have been completed, close the wizard, complete the step and then rn the waned again To continue, ect Net C1 Skip tis page by detaut eee] In next window keep "Role-based or feature-based installation” default selection and click on next. Select installation type eo eae ‘Select the ntalation ype You can neal roles and features ona running physical computer or tual =a trachie, or onan ofine vital hard ik (VEO) Tea © Rote-based or feature-based installation - Contigure single server by sng oes role series, nd estes (© Remote Desktop Services installation Insta quite role sences for Vtul Desktop Infrastructure (VOI to create a vitul machine-based or sessiombased deitop deployment Hip twarw rebeladmin com/2014C7stepby- step uide-to-sotup-anve- reciry-on-windows-server-20121 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin In next window we can select which server to install role. in our case it will be local. so keep the default selection and click on next. Select destination server Select a sever ora vital hard isk on which to intl role nd features @ Selecta serve from the server poo! (© Selecta veut nar ik Server Poo! Fite Name Operating Stem ‘ompater) Youre “This page shows servers that are running Windows Server 2012, and that have been added by using the ‘ad Serer command n Serves Manager One servers ad newy-saed rarer from which data Colections su ncomplcte ae not shown [ tools > DNS Hip twarw rebeladmin com/2014C7stepby- step uide-to-sotup-anve- reciry-on-windows-server-20121 iat 592015 ‘Step by Stp guide to sep Acsive Directory on Windows Server 2012RebaiAdmin| RebelAdmin Component Services Computer Management Defragment and Optimize Drives event Viewer iSCSI Initiator Local Security Policy (ODBC Data Sources (32-bit) (ODBC Data Sources (64-bit) Performance Monitor Resource Monitor Security Configuration Wizard Services System Configuration System Information Task Scheduler Windows Firewall with Advanced Securty Windows Memory Diagnostic Windows PowerShell Windows PowerShell (:86) Windows PowerShell ISE Windows PowerShell ISE (x86) Windows Server Backup Local Server 1 Manageability Events Events ipstwunw rbeladmin com/2014CTstop by stop guide sotup-anve- dreciry-on-windows-sorver-20121 592015 ‘Step by Stp guide to sep Acsive Directory on Windows Server 2012RebaiAdmin| RebelAdmin File Action View Help Cn ‘The Domain Neme System (ONS) slows # DNS namespace to be divided into zones. Each zone store information about one or more contiguous ONS domains > GB Reverse Lookup Zones > i True Points [Bl Conditional Forwarders > (Ey Glebe! Loge To add s new zone onthe Action menu, click New Zone Now we have every thing ready for AD install. so lets load server manager again and click on "Add roles and feature: NE aeer ee) © corgi act server By Fears Stray Sewees > ig fle ond oroge j I Severs 1 _ 1| |W toctserer | | fa atse © mansgessiny © Meranestity = Then it will load the" \dd roles and features” wizard. click on next to continue. ipstwunw rbeladmin com/2014CTstop by stop guide sotup-anve- dreciry-on-windows-sorver-20121 raat 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin DesrmaToN eavER ‘This wizard helps you instal oes, role services oF features You determine which oes oe services of {features to instal based onthe computing needs of yout arganzaten such as sharing document of hosting 8 website. To remove roles tle services, or features: Start the Remote Roles re Featres Wears Bore you contin, vy thatthe folowing tasks have been compte ‘Te Adminstrator acount has a strong password + Network settings, such a static Paaereses, ar configures +The most eurrentsecurty upeats from Windows Update are installed if you must very that any ofthe preceding prerequistes have been completed, close the wizard, complete the step and then rn the waned again To continue, ect Net C1 Skip tis page by detaut eee] In next window keep "Role-based or feature-based installation” default selection and click on next. Select installation type eo eae ‘Select the ntalation ype You can neal roles and features ona running physical computer or tual =a trachie, or onan ofine vital hard ik (VEO) Tea © Rote-based or feature-based installation - Contigure single server by sng oes role series, nd estes (© Remote Desktop Services installation Insta quite role sences for Vtul Desktop Infrastructure (VOI to create a vitul machine-based or sessiombased deitop deployment Hip twarw rebeladmin com/2014C7stepby- step uide-to-sotup-anve- reciry-on-windows-server-20121 aot 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin In next window we can select which server to install role. in our case it will be local. so keep the default selection and click on next Select destination server Select a sever ora vital hard isk on which to intl role nd features @ Selecta serve from the server poo! (© Selecta veut nar ik Server Poo! Fite Name Operating Stem ‘ompater) Youre “This page shows servers that are running Windows Server 2012, and that have been added by using the ‘ad Serer command n Serves Manager One servers ad newy-saed rarer from which data Colections su ncomplcte ae not shown [ backround tigen rater Serie 5) Sota pressor ee C1 BitLocker Drive Encryption paequiclomlsenizen areas Cl ettocker Network nick Somes cancers Branca ‘see commneston on pose chen fonts ‘Soni tomoseloronge (ota ceter tng ee a 1 vec Py 1 eroce'tage Fale Our 1 re Posy Management 1 sone eo cove Ikons Handing Sees ef description about the AD service. click on next to continue. Active Directory Domain Services at Before You Beg Insalation Type Server Selection server Roles Features ‘Confirmation ‘Active Directory Domain Services (AD 8) stores information sbout users, computers and other devices ‘onthe networe_ AD OS help administraters secure manage the information and facitatr resource {harng and collaboration between uses. ADS salsa requis for dvectonrenabled appicabons ‘uch Miroroft Exchange Sever and fr other Windows Sever technalogies much ax Group Pabey- Things to note + To help ensure that users can stillog on tothe networkin the case ofa server outage, install 2 ‘minimum of to domain controle for 8 domi ‘+ AD 05 requires s ONS sever tobe instaled on the netwerk. you donot have 8 ONS server ‘instal, you wal be prompted total the DNS Sever fale o this machine «+ Instaling AD DS wl alas neal the DFS Namespaces, DFS Replication and File Replication services ‘hich are required by AD OS. ipstwunw rbeladmin com/2014CTstop by stop guide sotup-anve- dreciry-on-windows-sorver-20121 seat 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin In next window it gives brief about the installation. click on “install” to start the installation. Confirm installation selections ent Before You Begin Server Season Sever Roles pos To ntl the folowing roles rle sevice, oF features on selected serve, clk Ina Cy Rasta the destination server automaticaly if quired (Optona este (such a amination toot) might be splayed on thie page bacauce they have been slectes stomaticly you do not want to metal these optional eaures cick Previous ear ther cheek bones. ‘tive Directory Domain Series ‘Group Policy Management Role Adminstration Toole ‘AD 0S and AD .0$ Tools Active Directory module for Windows PowerShell ADDS Tools ‘Active Directoy Administrative Center [AD DS Snap-ns and Command-Line Tools Export configuration setings ‘Spey an atemate source path In next window it will begins the service install and we have to wait till it finish. Hip twarw rebeladmin com/2014C7stepby- step uide-to-sotup-anve- reciry-on-windows-server-20121 soot 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin Installation progress View instalation progress © Fesure ncatation [AD DS and AD LDS Tools ‘Active Directory module for Windows PowerShell ADDS Tools ‘Active Directory Administrative Center [AD DS Snap:ins and Command-Line Tooke You can cose this wizard without interrupting running tasks: View tsk progres or open this [page apsin by eeking Notiseations in the command ba and then Tek Det spor configuration stings Once it finish click on "close" to exit from the wizard. then next step is to reboot the server to complete the installation. Installation progress View ntatiotion progress © Feo instatation Configuration required, Inetallation succeeded on DCPRI ‘Active Directory Domain Services ‘Actions steps are required to make tis machine a domi controle. Group Policy Management Remote Server Administration Tole Role Administration Toots "AD OS and AD LDS Tools ‘ative Directory module for Windows Powershe ‘AD DS Tools ‘Active Directory Administrative Center [AD DS Snep-ine and Command-Line Toole You can cose this wizard without interrupting runing tas. View task progress or open ths page aghin by ccking Notations in he command bar and then Task Detale Export configuration ating Hip twarw rebeladmin com/2014C7stepby- step uide-to-sotup-anve- reciry-on-windows-server-20121 zon 592015 ‘Step by Stp guide to sep Acsive Directory on Windows Server 2012RebaiAdmin| RebelAdmin After that completes we need to start on the DC setup. to start that open the erver Manager and click Task flag on right hand corner. then it will list option as below picture. click on ‘promote this server to a domain controller’ option ( highlighted with yellow in picture) a sete er wooo @ configure this iocal server Hy reason sees» Ack oes an fete ‘Then it starts the DCPROMO wizard, on the first window since its going to be new forest i have selected option "Add a new forest’ and i typed the domain name using on the forest. once fill the info click on -ontoso.com" which i will be ext" to continue. TARGET SERVER. CPR Select the deployment operation {did 2 domsin controler to an exiting domain [Ads s new domain to an exiting forest © Aa a new forest ‘Specity the domain information fr this operation More about deployment configurations In next window we can select the forest and domain functional levels. i will keep it default. then in domain controller capabilities its by default selected DNS server and Global Catalog as its first ipstwunw rbeladmin com/2014CTstop by stop guide sotup-anve- dreciry-on-windows-sorver-20121 aint 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin DC in the forest. then we need to defined password to use in DC recovery. click on next to continue. Domain Controller Options Deployment Configuration eee _ Fett tino oe [Widows sener203= [>] oe Domain functor ee WiniowsSever2012R2 [=] pane eww optons Speciy domain controler eapbiies “Type the Directory Services Restore Mode (OSRM) password Password is Confirm passwort: More about domain controller options In next window it will give following error but it can be ignore. click on next to continue. ipstwunw rbeladmin com/2014CTstop by stop guide sotup-anve- dreciry-on-windows-sorver-20121 zon 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin DNS Options TA delegation forthe ONS server consi be created bacause the avthoviatve parent sane cannot be founda. Show mare 1 Configuration Specify DNS delegation options Review Options Prerequittes Check More about ONS delagation 4 delegation for this DNS server cannot be created because the AA ininostative pore zone cannot be found ort does nat un Windows ONS server. f you are integrating with an existing DNS infrastructure, you should manually create a delegation to this ONS server in the patent zone to ensure reliable name resolution from outside the domain “contoso.com”. Otherwire, no action is required. In next window it ask for the netbios name, we can keep it default and click on next to continue, ipstwunw rbeladmin com/2014CTstop by stop guide sotup-anve- dreciry-on-windows-sorver-20121 rant 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin Additional Options ‘ance seven Desloyment Configuration i - Vert the Net8105 name atigned to the domain and change if necessary ‘Domain Controller Options ONS Options Pats Prerequistes Check The Net6I05 domain name: ‘coNTOsO Mere about aditional options In next window it give option to change file paths for AD database, log files and SYSVOL files. we can change the paths or keep them defaults. once changes are done click on next to continue ipstwunw rbeladmin com/2014CTstop by stop guide sotup-anve- dreciry-on-windows-sorver-20121 ant 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin Desloyment Configuration Specity the location ofthe AD OS database, lg les, andl SYSVOL Domain Console Options ONS Options ational Options og files folder (CAWindowsiNTOS SYSVOL folder (cAWindows\SYSVOL Database folder cAWindowaNTOS Review Options Preraquistes Check More about Active Directory paths In next window it gives description about the installation. click on next to continue. Review Options Deptymanscontgursion | Rovew yur selectons caren crnackerovena| Cont sever stint Aba Diciny doasla colors ei oma oxsopters sr in eco A a ere, Actitional Qptons ‘The NetBIOS name ofthe domain CONTOSO Pains (ERIE £2 Fone Lee Windons Sener 20122 Preraquites Check Domain Functional Levet Windows Sever 2012 R2 Additional Options: Global catalog Yes NS Seren ves Create ONS Delegation: No ‘These settings can be exported to Windows Powershal script to automate ssbona neaiatone More about installation options Hip twarw rebeladmin com/2014C7stepby- step uide-to-sotup-anve- reciry-on-windows-server-20121 2st 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin In next window it will run system check and verify system is compatible with the selected installation. once test completes successfully click on install button to begin the installation. if its passes any critical errors those needs to be address before the installation begin. Prerequisites Check © Alprerequiste checks passed suceesHly, Clee Waal to begin metalation Deployment Configuration my a Prarequitites need tobe valcotes before Active Directory Domsin Servicer it inealies on thir Comain Controller Options computer ONS Options Rerun prerequisites check 4 View rents “weaker yptagrapy sgorenme wnenemscisning secur cranns seszone Foc rote formation about thi seting, see Knowledge Bae ane 2864 (tp) agomicrxaR corinne 104751). A dleostin for tit ONS sewer cannot be cents becsue the suthoreate parent Zone cannot be foun or doesnot rn Windows DNS aren Hou are tegatng ‘wit an eusing ONS inrastractre, you shuld manual crest a delegetion ths DNS sererin the prem zone to ensure reiabe ame soutien Wom ote he domain "contota om Others no acon required © Prerequtes Check Completes © At prereqiit chechs posed succes, Ci Total to begin instalation As Ht y0u click Install, the server automatically reboots at the end of the promotion operation. More about prerequisites then it will start the install and we need to wait tll it finishes. ipstwunw rbeladmin com/2014CTstop by stop guide sotup-anve- dreciry-on-windows-sorver-20121 aot 592015 ‘Step by Step guide to setup Acive Directory on Windows Server 2012RebslAdmin| RebeAdmin Installation Progress Configuring the local computer to host Active Diectry Domain Services 1 View detailed operation results “A. Windows Server 2012 R2 domain controls have a deta forthe security seting named “Allow exyptography algrthmes compatible wth Windows NT 40" that prevents weaker cryptography algorithms when establshing security chonnel sessions. For more information about th zetting see Knowledge Base ace 942864 (htp// ‘gemmirosafcom/fwink/2nksé= 104751). {A delegation for this ONS sever cannot be crested becouse the authoritative parent zone ‘Sot eae ox doe act nr] Wes DNS saver Wye ei niet wits ‘existing ONS infrastructure, you should manually create a delegation to this DNS serve ia the porent zone to ensure relate nome resolution fom out the domain “eantosa com” Otherwise, no action fs required More about instalation options

    Anda mungkin juga menyukai