Categories

LKBEN10814: How to install active directory on a windows server 2003

Symptom

You want to install active directory

Cause

You want to set up your own active directory Windows server.

Solution

Requirements:
     Properly configured TCP/IP (IP address, subnet mask, default gateway)
     A network connection
     An operational DNS server
     A Domain name that you want to use
     The Windows Server 2003 CD media

 

Step 1: Configure the computer's suffix

-Right click My Computer and choose Properties.
-Click the Computer Name tab, then Change.
-Set the computer's NetBIOS name. Click More.
-In the Primary DNS suffix of this computer box enter the would-be domain name.Click Ok.
-You'll get a warning window. Click ok.
-Check your settings. Click ok.
-You'll get a warning window.Click Ok to restart.
 

Step 2: Configuring the computer's TCP/IP settings

-Click Start, point to Settings and then click Control Panel.
-Double-click Network and Dial-up Connections.
-Right-click Local Area Connection, and then click Properties.
-Click Internet Protocol (TCP/IP), and then click Properties.
-Assign this server a static IP address, subnet mask, and gateway address.
-Click Advanced. Click the DNS Tab.
-Select "Append primary and connection specific DNS suffixes"
-Check "Append parent suffixes of the primary DNS suffix"
-Check "Register this connection's addresses in DNS".
-Click OK to close the Advanced TCP/IP Settings properties.
-Click OK to accept the changes to your TCP/IP configuration.
-Click OK to close the Local Area Connections properties.

 Step 3: Configure the DNS Zone

3.1 Creating a Standard Primary Forward Lookup Zone

-Click Start, point to All Programs, point to Administrative Tools, and then click DNS Manager.
-Right click Forward Lookup Zones and choose to add a new zone. Click Next.
-Click Primary and then click Next.
-The name of the zone must be the same as the name of the Active Directory domain, or be a logical DNS container for that name.Type the name of the zone, and then click Next.
-Accept the default name for the new zone file. Click Next.
-To be able to accept dynamic updates to this new zone, click "Allow both nonsecure and secure dynamic updates". Click Next.
-Click Finish

Note: To check if your Server registered itself in the new zone type ipconfig /registerdns at a command promt. When you go back to the dns console and open the new zone, the computer should now be listed in the right pane.

 -For internet connections you have to activate the DNS forwarding
-Start the DNS Management Console.
-Right click the DNS Server object for your server in the left pane of the console, and click Properties.
-Click the Forwarders tab.
-In the IP address box enter the IP address of the DNS servers you want to forward queries to (normally the DNS server of your ISP). Click OK.

3.2 Creating a Standard Primary Reverse Lookup Zone

-See 3.1. The zone's name will be the same as your TCP/IP Network ID.
-You should also configure the new zone to accept dynamic updates.

Step 4: DCPROMO

-Click Start, point to Run and type "dcpromo".
-Click Next. Click Next.
-Choose Domain Controller for a new domain and click Next.
-Choose Create a new Domain in a new forest and click Next.
-Enter the full DNS name of the new domain. This must be the same as the DNS zone you've created in step 3 and the same as the computer name suffix you've created in step 1. Click Next.
-Accept the the down-level NetBIOS domain name. Click Next
-Accept the Database and Log file location dialog box.Click next.
-Accept the Sysvol folder location dialog box . Click next.
-Click next.
-Accept the Permissions. Click next.
-Enter the Restore Mode administrator's password. Click next.
-Review your settings and if everything is ok click Next.
-See the wizard going through the various stages of installing AD.
-Click Finish.
-You must reboot in order for the AD to function properly. click restart.

 

Step 5: Checking the AD installation

-See if the AD management tools are installed (under the Administrative Tools folder)
-Run Active Directory Users and Computers to check if there are all OUs and Containers.
-Run Active Directory Sites and Services to see a site named Default-First-Site-Name, and that your server is listed.
-Check to see if you have the SYSVOL and NETLOGON shares, and their location.

Disclaimer:

The information provided in this document is intended for your information only. Lubby makes no claims to the validity of this information. Use of this information is at own risk!

About the Author

Author: Wim Peeters - Keskon GmbH & Co. KG

Wim Peeters is electronics engineer with an additional master in IT and over 30 years of experience, including time spent in support, development, consulting, training and database administration. Wim has worked with SQL Server since version 6.5. He has developed in C/C++, Java and C# on Windows and Linux. He writes knowledge base articles to solve IT problems and publishes them on the Lubby Knowledge Platform.

Latest update: 05-10-2020 | Comment: