1671
Comment:
|
2930
|
Deletions are marked like this. | Additions are marked like this. |
Line 3: | Line 3: |
We are going to install AD in a single Domain for right now. You will notice that there doesn't seem to be install directions for AD DS in the book. A cryptic note at the end of Chapter 3 (Referenced in the previous assignment) gives some very high level advice on how to accomplish this. For this lab we will perform the following: | We are going to install AD in a single Domain for right now. For this lab we will perform the following: |
Line 5: | Line 5: |
1. Change the hostname of your server to match the naming convention. Namely: "cpte265a" (do this first!!!) 1. Install a new Forest with a single domain {{{[your username].internal}}} a. {{{> Install-windowsfeature -name AD-Domain-Services -IncludeManagementTools}}} a. {{{> Install-ADDSForest -ForestMode "Win8" -DomainMode "Win8" -DomainName "scot.internal" -DomainNetBIOSName "scot" -InstallDNS:$true -CreateDNSDelegation:$false}}} |
1. Change the hostname of your server to match the naming convention. Namely: "cpte230a" (if you haven't done this, do this first!!!) 1. Install a new Forest with a single domain {{{cpte230.internal}}} a. {{{> Install-WindowsFeature -name AD-Domain-Services -IncludeManagementTools}}} a. {{{> Install-ADDSForest -DomainName "scot.local" -CreateDnsDelegation:$false -DomainMode WinThreshold -DomainNetbiosName "scot" -ForestMode WinThreshold -InstallDns:$true}}} |
Line 10: | Line 10: |
a. Make sure you are in the Eastern Time Zone a. Check to make sure your installation went as expected. Use some of the tools I've shown you in class (AD Users and Comps., ADSIEdit ...) 1. Make an administrative user for grading purposes name this user. a. Create a new user with username "dra" a. Give the user a password. '''You must turn this in as part of your assignment, or I can't grade your work!''' a. Add the user to the "Domain Admins" and "Enterprise Admins" groups. |
a. Make sure you are in the Eastern Time Zone a. Change your DNS from 10.10.129.2|3 to your IP address (192.168.1.2). a. Check to make sure your installation went as expected. Use some of the tools I've shown you in class (AD Users and Comps., ADSIEdit ...) Back on the Windows 10 machine: 1. Before you add your computer to the domain, you must update the dns to point to the new dns server on your windows server. a. On your firewall change the DHCP service for your LAN to use 192.168.1.2 as the DNS server. See: [[attachment:dhcp_dns_update.png]] 1. Add the Windows 10 computer to the top Active directory domain. (You have to use [username]\administrator, [password]) a. Right click start, system, advanced settings a. Under Computer Name, click "Change..." and add it to your active directory. a. In the Windows 10 computer as administrator add the "Domain Users" to the list of users allowed to use remote desktop 1. Right click start 1. Select System, Advanced System Settings 1. Select Remote, Select Users and Add "Domain Users" to the list. |
Line 19: | Line 27: |
Document the process that you used in installing your active directory in a new page named "Lab02". Make sure to include the commands you entered in PowerShell! | Document the process that you used in installing your active directory in a new page "Domain". Make sure to include the commands you entered in {{{PowerShell}}}! |
Line 24: | Line 32: |
A. Any other changes you made at this point. | A. Any other changes you made at this point. Create a video that talks through the documentation you created and shows the server has active directory installed and operational. The easiest way to do this is pull up the {{{Active Directory Users and Computers}}} tool and show the domain. == Grade Guide == ||<tablewidth="867px" tablestyle="text-align:left">Topics ||Points || ||<tablewidth="867px" tablestyle="text-align:left">Video walks throught the doucmentation page "Domain" linked from the Documentation Wiki home page with all four parts shown ||30 || ||Video shows that the server indeed does have AD installed <<BT>>PS> Get-Service adws,kdc,netlogon,dns<<BR>>PS> Get-ADDomainController<<BR>>PS> Get-ADDomain <<BR>>PS> Get-ADForest scot.local<<BR>>PS> Get-!SmbShare<<BR>>Hostname changed as required<<BR>>Domain name changed as required<<BR>>Timezone set to Eastern ||70 || |
Lab 2
We are going to install AD in a single Domain for right now. For this lab we will perform the following:
- Change the hostname of your server to match the naming convention. Namely: "cpte230a" (if you haven't done this, do this first!!!)
Install a new Forest with a single domain cpte230.internal
> Install-WindowsFeature -name AD-Domain-Services -IncludeManagementTools
> Install-ADDSForest -DomainName "scot.local" -CreateDnsDelegation:$false -DomainMode WinThreshold -DomainNetbiosName "scot" -ForestMode WinThreshold -InstallDns:$true
- Some Clean up...
- Make sure you are in the Eastern Time Zone
- Change your DNS from 10.10.129.2|3 to your IP address (192.168.1.2).
- Check to make sure your installation went as expected. Use some of the tools I've shown you in class (AD Users and Comps., ADSIEdit ...)
Back on the Windows 10 machine:
- Before you add your computer to the domain, you must update the dns to point to the new dns server on your windows server.
On your firewall change the DHCP service for your LAN to use 192.168.1.2 as the DNS server. See: dhcp_dns_update.png
- Add the Windows 10 computer to the top Active directory domain. (You have to use [username]\administrator, [password])
- Right click start, system, advanced settings
- Under Computer Name, click "Change..." and add it to your active directory.
- In the Windows 10 computer as administrator add the "Domain Users" to the list of users allowed to use remote desktop
- Right click start
- Select System, Advanced System Settings
- Select Remote, Select Users and Add "Domain Users" to the list.
Documentation
Document the process that you used in installing your active directory in a new page "Domain". Make sure to include the commands you entered in PowerShell!
- Computer Name: [...]
- Domain Name: [...]
- Commands used in order from the Power Shell prompt.
- Any other changes you made at this point.
Create a video that talks through the documentation you created and shows the server has active directory installed and operational. The easiest way to do this is pull up the Active Directory Users and Computers tool and show the domain.
Grade Guide
Topics |
Points |
Video walks throught the doucmentation page "Domain" linked from the Documentation Wiki home page with all four parts shown |
30 |
Video shows that the server indeed does have AD installed <<BT>>PS> Get-Service adws,kdc,netlogon,dns |
70 |