Home > Others

Combat windows2016 Production Environment domain controller deployment

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Ten years ago in the windows2003 on the domain controller, to the end of the failure, so many years domain controller for me has been a nightmare, even if today I have been deployed in the production environment success, many details are still not very understanding, due to limited energy, deployment horizon7.1 enough, can only donuts, more details in the actual use of slowly study.


Before deployment there are several important points to be sure to understand:

1, root domain: If only in the intranet environment, it is recommended to use xxx.local or xxx.internal.

2, DNS server: I deploy directly to the domain controller, the advantage is that you can do dynamic resolution, do not need to each domain-joined computer to manually resolve the domain name.

3, The production environment of the domain controller to deploy at least two to ensure redundancy, recommended to be placed on different vsphere hosts and different storage.



Deployment steps:


First, installation Services

1. Change the full name of the computer to DC1and restart.

2. add roles and features, select the acitvedirectory domain service and the DNS service.

650) this.width=650; "Src=" https://s1.51cto.com/wyfs02/M01/98/CF/wKioL1lA1TyTKvhfAAK7MueDXHc874.png-wh_500x0-wm_ 3-wmp_4-s_3836002565.png "title=" 03.png "alt=" Wkiol1la1tytkvhfaak7muedxhc874.png-wh_50 "/>

3 . Then continue to the next step until the installation.

650) this.width=650; "Src=" https://s3.51cto.com/wyfs02/M00/98/CF/wKioL1lA1WKAnMrYAAKFJ8TD66s324.png-wh_500x0-wm_ 3-wmp_4-s_2990652722.png "style=" Float:none; "title=" 04.png "alt=" Wkiol1la1wkanmryaakfj8td66s324.png-wh_50 "/>

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M00/98/CF/wKiom1lA1WOy_CWIAAJ6Pk4hJFI386.png-wh_500x0-wm_ 3-wmp_4-s_476807265.png "style=" Float:none; "title=" 05.png "alt=" Wkiom1la1woy_cwiaaj6pk4hjfi386.png-wh_50 "/>

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M01/98/CF/wKiom1lA1WTS_eMmAAJHLxlFIWY885.png-wh_500x0-wm_ 3-wmp_4-s_4141004327.png "style=" Float:none; "title=" 06.png "alt=" Wkiom1la1wts_emmaajhlxlfiwy885.png-wh_50 "/>

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M01/98/CF/wKioL1lA1WWjoN3sAAIv7z2dcxw098.png-wh_500x0-wm_ 3-wmp_4-s_3567091917.png "style=" Float:none; "title=" 07.png "alt=" Wkiol1la1wwjon3saaiv7z2dcxw098.png-wh_50 "/>


Second, configure the domain controller

1. promote the server to a domain controller

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M00/98/CF/wKioL1lA1fyQ9tCSAAIaCzxoGz8875.png-wh_500x0-wm_ 3-wmp_4-s_3807129450.png "title=" 08.png "alt=" Wkiol1la1fyq9tcsaaiaczxogz8875.png-wh_50 "/>

2. Add New Forest, configure xxx.local domain name

650) this.width=650; "Src=" https://s2.51cto.com/wyfs02/M01/98/CF/wKioL1lA1k2gLWkBAAHWdlFn86g710.png-wh_500x0-wm_ 3-wmp_4-s_2581263657.png "title=" X1.png "alt=" Wkiol1la1k2glwkbaahwdlfn86g710.png-wh_50 "/>

3, set the password, do what I do not know, follow the default configuration to go

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M00/98/CF/wKiom1lA1ovgjucrAAI6BqrGfBQ348.png-wh_500x0-wm_ 3-wmp_4-s_654788505.png "title=" X2.png "alt=" Wkiom1la1ovgjucraai6bqrgfbq348.png-wh_50 "/>

4, press the default to continue to the next

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M02/98/CF/wKioL1lA1rvSao3IAAIL5MxViOQ639.png-wh_500x0-wm_ 3-wmp_4-s_3202437506.png "style=" Float:none; "title=" X3.png "alt=" Wkiol1la1rvsao3iaail5mxvioq639.png-wh_50 "/>

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M00/98/CF/wKiom1lA1rugBt-4AAHyAgn7yZA107.png-wh_500x0-wm_ 3-wmp_4-s_3415520951.png "style=" Float:none; "title=" X4.png "alt=" Wkiom1la1rugbt-4aahyagn7yza107.png-wh_50 "/>

5, where the file location recommended in different locations, is said to be related to performance, I have two partitions, put D disk.

650) this.width=650; "Src=" https://s1.51cto.com/wyfs02/M01/98/CF/wKiom1lA1ryAqKIaAAILJtXe7uc889.png-wh_500x0-wm_ 3-wmp_4-s_3937889463.png "style=" Float:none; "title=" X6.png "alt=" Wkiom1la1ryaqkiaaailjtxe7uc889.png-wh_50 "/>

6. Continue to the default next step until the installation is complete to restart the computer

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M00/98/D0/wKiom1lA10zhpM9-AALGMUbVojA136.png-wh_500x0-wm_ 3-wmp_4-s_558943177.png "style=" Float:none; "title=" X7.png "alt=" Wkiom1la10zhpm9-aalgmubvoja136.png-wh_50 "/>

650) this.width=650; "Src=" https://s1.51cto.com/wyfs02/M00/98/D0/wKioL1lA103i1FadAAJ4F1BkzRQ070.png-wh_500x0-wm_ 3-wmp_4-s_2053433049.png "style=" Float:none; "title=" X8.png "alt=" Wkiol1la103i1fadaaj4f1bkzrq070.png-wh_50 "/>


Third, check the configuration

1, the computer successfully joined the domain

650) this.width=650; "Src=" https://s5.51cto.com/wyfs02/M02/98/D0/wKioL1lA157h9rC-AAH8FdHT5hc523.png-wh_500x0-wm_ 3-wmp_4-s_607420265.png "title=" Z3.png "style=" Float:none; "alt=" Wkiol1la157h9rc-aah8fdht5hc523.png-wh_50 "/>

2, DNS resolution DC1 address

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M00/98/D0/wKiom1lA153QT0iUAAHHunCxOl8271.png-wh_500x0-wm_ 3-wmp_4-s_1170689931.png "style=" Float:none; "title=" Z1.png "alt=" Wkiom1la153qt0iuaahhuncxol8271.png-wh_50 "/>

3. DC1 is the domain controller

650) this.width=650; "Src=" https://s5.51cto.com/wyfs02/M00/98/D0/wKioL1lA156xj1K6AAH5mbv1blg699.png-wh_500x0-wm_ 3-wmp_4-s_4050045935.png "style=" Float:none; "title=" Z2.png "alt=" Wkiol1la156xj1k6aah5mbv1blg699.png-wh_50 "/>

4. Configure the preferred DNS of the network card as the native IP address, and the standby DNS is configured as DC2 of the IP address.


Iv. deployment of the second domain controller

1, If you are using vmware cloned virtual machine, in the back of the upgrade domain controller will have a big pit waiting for you, prompting you SID repeat.

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M02/98/D0/wKiom1lA2TDxrHiDAAKJKsoS0lc466.png-wh_500x0-wm_ 3-wmp_4-s_660935447.png "title=" A10.png "alt=" Wkiom1la2tdxrhidaakjksos0lc466.png-wh_50 "/>

2.Open "Run" input "sysprep" Enter find this tool, follow the operation, reset password and network after reboot.

650) this.width=650; "Src=" https://s5.51cto.com/wyfs02/M02/98/D0/wKiom1lA2WSizDOhAADaBynn6fI437.png-wh_500x0-wm_ 3-wmp_4-s_2063179862.png "style=" Float:none; "title=" S2.png "alt=" Wkiom1la2wsizdohaadabynn6fi437.png-wh_50 "/>

650) this.width=650; "Src=" https://s5.51cto.com/wyfs02/M02/98/D0/wKioL1lA2WTzCsXFAADR9dQxwnk892.png-wh_500x0-wm_ 3-wmp_4-s_183788482.png "style=" Float:none; "title=" S3.png "alt=" Wkiol1la2wtzcsxfaadr9dqxwnk892.png-wh_50 "/>

3, change the full name of the computer to DC2, the preferred DNS to DC1 IP address, reboot .

4.repeat DC1 operations, add roles and features, check acitvedirectory domain service and DNS service

5. Then continue to the next step until the installation.


V. Configuring the second domain controller

1, add the domain controller to the existing forest, there is a pit, user name Input xxx\administrator,DC1 password. Otherwise, you will be prompted to provide the user account name.

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M00/98/D0/wKioL1lA2cCBMyt8AAGrtq4Fl2g713.png-wh_500x0-wm_ 3-wmp_4-s_2074694279.png "style=" Float:none; "title=" A1.png "alt=" Wkiol1la2ccbmyt8aagrtq4fl2g713.png-wh_50 "/>

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M01/98/D0/wKiom1lA2cHAqK3HAAIWQ6PVfq8153.png-wh_500x0-wm_ 3-wmp_4-s_918745545.png "style=" Float:none; "title=" A6.png "alt=" Wkiom1la2chaqk3haaiwq6pvfq8153.png-wh_50 "/>

650) this.width=650; "Src=" https://s3.51cto.com/wyfs02/M01/98/D0/wKioL1lA2hfSVvu8AAGawlTDlFc203.png-wh_500x0-wm_ 3-wmp_4-s_4181780897.png "title=" A3.png "alt=" Wkiol1la2hfsvvu8aagawltdlfc203.png-wh_50 "/>

2, the default configuration, continue to configure the password

650) this.width=650; "Src=" https://s2.51cto.com/wyfs02/M00/98/D0/wKiom1lA2kTANGSAAAHgzSVTg18779.png-wh_500x0-wm_ 3-wmp_4-s_2648004157.png "title=" A7.png "alt=" Wkiom1la2ktangsaaahgzsvtg18779.png-wh_50 "/>

3. Select Dc1.xxx.local Here

650) this.width=650; "Src=" https://s1.51cto.com/wyfs02/M01/98/D0/wKiom1lA2lzxXojAAAGqW0PraMk048.png-wh_500x0-wm_ 3-wmp_4-s_950528728.png "title=" A8.png "alt=" Wkiom1la2lzxxojaaagqw0pramk048.png-wh_50 "/>

4. Continue to configure the directory

650) this.width=650; "Src=" https://s1.51cto.com/wyfs02/M00/98/D0/wKioL1lA2o2D_S2-AAHBjJImcmc692.png-wh_500x0-wm_ 3-wmp_4-s_4118926801.png "title=" A9.png "alt=" Wkiol1la2o2d_s2-aahbjjimcmc692.png-wh_50 "/>

5, the default next until the computer restarts.


Vi. checking the second domain controller configuration

1. Change the DNS settings for DC2 , first DNS configuration DC2 IP address, alternate DNS configuration DC1 of the IP address.

2, check whether two domain controller configuration is synchronized

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M00/98/D0/wKiom1lA2wOSWAktAALU61TUzQ0701.png-wh_500x0-wm_ 3-wmp_4-s_3756267844.png "title=" Q1.png "alt=" Wkiom1la2woswaktaalu61tuzq0701.png-wh_50 "/>


This article is from the "University Network and data center operation and Maintenance" blog, please make sure to keep this source http://hanson2017.blog.51cto.com/1336475/1936607

Combat windows2016 Production Environment domain controller deployment

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
virtual wireless lan controller deployment guide kdc domain controller migrate domain controller domain controller logon events cloud hosted domain controller gpo domain controller ldap domain controller

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More