AD DS Install

Active Directory Domain Services

Active Directory

AD Lifecycle

PowerShell

Active Directory Domain Services

Assumptions

Install AD Using PowerShell

Next Steps

Bibliography

Assumptions

You have already installed Windows Server Core on the target machine (Domain Controller)
If you are building a VirtualBox test-bed you will use a "NAT Network" on all machines

Windows Lifecycle

VirtualBox Networking

Install AD Using PowerShell

sconfig

Confirm Remote Management is enabled
Change the Computer Name (2)

Change Network Settings (8)
Preferred DNS Server should be 127.0.0.1 (2)
DHCP Enabled should be False (server should have a static IP). (1)
Default Gateway should match the default gateway of your network. (1)

e.g. if you are using a VirtualBox NAT Network with a CIDR Block of 172.16.16.0/28 then the Default Gateway should be 172.16.16.1

Subnet Mask should match your CIDR Block

e.g. 172.16.16.0/28 has a subnet mask of 255.255.255.240

Return to Main Menu (4) and Exit to Command Line (15)

powershell

Install-windowsfeature -name AD-Domain-Services -IncludeManagementTools

Success Restart Needed Exit Code      Feature Result

------- -------------- ---------      --------------

True    No             Success        {Active Directory Domain Services, Group P...

Get-Command -Module ADDSDeployment

CommandType     Name                                               ModuleName

-----------     ----                                               ----------

Cmdlet          Add-ADDSReadOnlyDomainControllerAccount            ADDSDeployment

Cmdlet          Install-ADDSDomain                                 ADDSDeployment

Cmdlet          Install-ADDSDomainController                       ADDSDeployment

Cmdlet          Install-ADDSForest                                 ADDSDeployment

Cmdlet          Test-ADDSDomainControllerInstallation              ADDSDeployment

Cmdlet          Test-ADDSDomainControllerUninstallation            ADDSDeployment

Cmdlet          Test-ADDSDomainInstallation                        ADDSDeployment

Cmdlet          Test-ADDSForestInstallation                        ADDSDeployment

Cmdlet          Test-ADDSReadOnlyDomainControllerAccountCreation   ADDSDeployment

Cmdlet          Uninstall-ADDSDomainController                     ADDSDeployment

Install-ADDSForest -DomainName mydomain.local -InstallDns:$true

You will be prompted for a passwordThe machine will reboot automatically after installation is complete

powershell

Get-ADDomain

Get-Service adws,kdc,netlogon,dns

Next Steps

AD Add Servers

Add Servers to the Domain

AD DS Tools

Install the GUI Tools on a server other than the Domain Controller (this is a good idea especially if the Domain Controller is running Windows Server Core).

Bibliography

https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/deploy/install-active-directory-domain-services--level-100-#BKMK_GUIhttps://blog.netwrix.com/2017/02/20/introduction-to-active-directory-services-technologies/https://blog.netwrix.com/2017/01/30/best-practices-deploy-and-setup-domain-controller/https://iwcl.wordpress.com/2014/06/27/step-by-step-install-active-directory-on-windows-server-2012-r2-core/https://medium.com/@vartaisecurity/lab-building-guide-virtual-active-directory-5f0d0c8eb907https://mxtoolbox.com/SubnetCalculator.aspx