Differences between revisions 13 and 31 (spanning 18 versions)
Revision 13 as of 2015-09-17 12:53:21
Size: 2248
Editor: scot
Comment:
Revision 31 as of 2021-09-09 18:21:59
Size: 2931
Editor: scot
Comment:
Deletions are marked like this. Additions are marked like this.
Line 2: Line 2:
We are going to install AD in a single Domain for right now. You will notice that there doesn't seem to be install directions for AD DS in the book. A cryptic note at the end of Chapter 3 (Referenced in the previous assignment) gives some very high level advice on how to accomplish this. For this lab we will perform the following:
Line 4: Line 3:
 1. Change the hostname of your server to match the naming convention. Namely: "cpte230a" (do this first!!!)
 1. Install a new Forest with a single domain {{{[your username].internal}}}
  a. {{{> Install-windowsfeature -name AD-Domain-Services -IncludeManagementTools}}}
  a. {{{> Install-ADDSForest -ForestMode Win2012R2 -DomainMode Win2012R2 -DomainName "dra.internal"}}}
We are going to install AD in a single Domain for right now. For this lab we will perform the following:

1. Change the hostname of your server to match the naming convention. Namely: "cpte230a" (if you haven't done this, do this first!!!)
 1. Install a new Forest with a single domain {{{cpte230.internal}}}
  a. {{{> Install-WindowsFeature -name AD-Domain-Services -IncludeManagementTools}}}
  a. {{{> Install-ADDSForest -DomainName "scot.local" -CreateDnsDelegation:$false -DomainMode WinThreshold -DomainNetbiosName "scot" -ForestMode WinThreshold -InstallDns:$true}}}
Line 10: Line 11:
  a. Change your DNS from 216.249.119.10/11 to your IP address.   a. Change your DNS from 10.10.129.2|3 to your IP address (192.168.1.2).
Line 12: Line 13:
 1. Make an administrative user for grading purposes name this user.
  a. Create a new user with username "dra"
  a. Give the user a password. '''You must turn this in as part of your assignment, or I can't grade your work!'''
  a. Add the user to the "Domain Admins" and "Enterprise Admins" groups.

Back on the Windows 10 machine:
 1. Before you add your computer to the domain, you must update the dns to point to the new dns server on your windows server.
    a. On your firewall change the DHCP service for your LAN to use 192.168.1.2 as the DNS server. See: [[attachment:dhcp_dns_update.png]]
 1. Add the Windows 10 computer to the top Active directory domain. (You have to use [username]\administrator, [password])
     a. Right click start, system, advanced settings
     a. Under Computer Name, click "Change..." and add it to your active directory.
     a. In the Windows 10 computer as administrator add the "Domain Users" to the list of users allowed to use remote desktop
        1. Right click start
        1. Select System, Advanced System Settings
        1. Select Remote, Select Users and Add "Domain Users" to the list.
Line 32: Line 40:
||<tablewidth="867px" tablestyle="text-align:left">Video walks throught the doucmentation page "Domain" linked from the Documentation Wiki home page with all four parts shown ||50 ||
||Video shows that the server indeed does have AD installed ||50 ||
||<tablewidth="867px" tablestyle="text-align:left">Video walks throught the doucmentation page "Domain" linked from the Documentation Wiki home page with all four parts shown ||30 ||
||Video shows that the server indeed does have AD installed <<BT>>PS> Get-Service adws,kdc,netlogon,dns<<BR>> PS> Get-ADDomainController<<BR>>PS> Get-ADDomain <<BR>>PS> Get-ADForest scot.local<<BR>>PS> Get-!SmbShare<<BR>>Hostname changed as required<<BR>>Domain name changed as required<<BR>>Timezone set to Eastern ||70 ||

Lab 2

We are going to install AD in a single Domain for right now. For this lab we will perform the following:

  1. Change the hostname of your server to match the naming convention. Namely: "cpte230a" (if you haven't done this, do this first!!!)
  2. Install a new Forest with a single domain cpte230.internal

    1. > Install-WindowsFeature -name AD-Domain-Services -IncludeManagementTools

    2. > Install-ADDSForest -DomainName "scot.local" -CreateDnsDelegation:$false -DomainMode WinThreshold -DomainNetbiosName "scot" -ForestMode WinThreshold -InstallDns:$true

  3. Some Clean up...
    1. Make sure you are in the Eastern Time Zone
    2. Change your DNS from 10.10.129.2|3 to your IP address (192.168.1.2).
    3. Check to make sure your installation went as expected. Use some of the tools I've shown you in class (AD Users and Comps., ADSIEdit ...)

Back on the Windows 10 machine:

  1. Before you add your computer to the domain, you must update the dns to point to the new dns server on your windows server.
    1. On your firewall change the DHCP service for your LAN to use 192.168.1.2 as the DNS server. See: dhcp_dns_update.png

  2. Add the Windows 10 computer to the top Active directory domain. (You have to use [username]\administrator, [password])
    1. Right click start, system, advanced settings
    2. Under Computer Name, click "Change..." and add it to your active directory.
    3. In the Windows 10 computer as administrator add the "Domain Users" to the list of users allowed to use remote desktop
      1. Right click start
      2. Select System, Advanced System Settings
      3. Select Remote, Select Users and Add "Domain Users" to the list.

Documentation

Document the process that you used in installing your active directory in a new page "Domain". Make sure to include the commands you entered in PowerShell!

  1. Computer Name: [...]
  2. Domain Name: [...]
  3. Commands used in order from the Power Shell prompt.
  4. Any other changes you made at this point.

Create a video that talks through the documentation you created and shows the server has active directory installed and operational. The easiest way to do this is pull up the Active Directory Users and Computers tool and show the domain.

Grade Guide

Topics

Points

Video walks throught the doucmentation page "Domain" linked from the Documentation Wiki home page with all four parts shown

30

Video shows that the server indeed does have AD installed <<BT>>PS> Get-Service adws,kdc,netlogon,dns
PS> Get-ADDomainController
PS> Get-ADDomain
PS> Get-ADForest scot.local
PS> Get-SmbShare
Hostname changed as required
Domain name changed as required
Timezone set to Eastern

70

WindowsAdministration/Lab02SetupActiveDirectory (last edited 2024-09-05 17:54:49 by scot)