Install and Configure Windows 2003 Active Directory
Active Directory Requirements:- An NTFS partition with approximately 2Gb free Space
- An Administrator's username and password and separate Directory Services Restore Mode Password.
- Properly configured TCP/IP network connection, with IP Address , Subnet mask and Default Gateway.
- An operational DNS server (which can be installed on the DC itself)
- A Domain name
Start the install from the "Configure Your Server" wizard or by typing DCPromo from the Run prompt:
or
Press OK
Press Next
Press Next
Wait
Select "Domain Controller (Active Directory) then press Next
Press Next
Wait
Press Next
Press Next
As this is the first DC, select the first option and press next.
As this is a new domain in a new forest, select the first option and press next.
An Active Directory domain name is different from an internet domain name and should not be seen on the internet. Any name will do but it is common practice to make the name relevant to your organisation.
Whenever you access resources in your domain from outside the domain boundary, your will be required to enter the domain NetBIOS name for authentication. in that case make the NetBIOS name as short as possible.
Leave these as their defaults unless you have a specific reason to change them. Placing them on a different NTFS partition can increase performance.
Again, dont change it unless you need to.
DCPromo will attempt to locate an active DNS server, in the case that it fails it will present you with the 3 options shown above. If this is the first DC and you intend to use "Active Directory Integerated" DNS then choose option 2. "Active Directory Integrated" DNS is the most secure and zone transfers are incorporated into the Active Directory Replication process. If you want to configure the DNS manually then choose option 3. If you are only going to have one DC then choose option 2.
If you have upgraded from and NT domain and still use NT programs that access the Directory you may have to choose option 1, however if you are installing a new domain with only Windows 200 and 2003 domain controllers choose option 2.
This password will be used to restore active directory from a backup in case of a failure, having experienced this exact situation, i understand how important it is to never forget this password. Although you should choose a different password from the administrator password having them both the same does make it easier to rememeber it. I have never liked the idea of keeping a written copy of passwords even with encryption and so all my passwords are stored in my head. Due to this when it comes to restoring Active Directory it is a lot easier if the restore password is the same as the admin password.
Confirm Settings and press next.
Wait
The windows 2003 cd may be required.
Wait
All Done - Press Finish
Now or Later its up to you.
Once restarted the Configure Your Server Wizrd will Confim Completion, Press Finish
Now you have a new domain installed on your first domain controller. Active Directory can be accessed from the "Active Directory Users and Computers" Administrative Tools Icon or by typing dsa.msc at the run prompt.
No comments:
Post a Comment