Home > Others

2012 Active Directory deployment

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Domain: It is used to describe a system architecture. In contrast to the Working Group, the advanced architecture upgraded by the working group can achieve unified management in the domain architecture.

Activity directory: Is the core of the Directory Service (query, authentication) activity directory provided by Microsoft. It contains the activity directory database and all objects (users, computers, group ......)

Domain Controller: The server used to manage all clients in the domain architecture is the core of the domain architecture. Each domain controller contains an active directory database.

 

Install Domain Controller

1. Add roles and functions in management. 2012 dcpromo cannot be added to the domain.

650) This. width = 650; "style =" border-bottom: 0px; border-left: 0px; margin: 0px; border-top: 0px; border-Right: 0px; "Title =" image "border =" 0 "alt =" image "src =" http://img1.51cto.com/attachment/201408/11/8809812_140777542315Xn.png "Height =" 768 "/>

2. Select the domain service when installing the role. The function is not selected.

650) This. width = 650; "style =" border-bottom: 0px; border-left: 0px; border-top: 0px; border-Right: 0px; "Title =" image "border =" 0 "alt =" image "src =" http://img1.51cto.com/attachment/201408/11/8809812_14077753961p6G.png "Height =" 454 "/>

3. The remaining options are included in the next step. You can install them directly at the end.

650) This. width = 650; "style =" border-bottom: 0px; border-left: 0px; border-top: 0px; border-Right: 0px; "Title =" image "border =" 0 "alt =" image "src =" http://img1.51cto.com/attachment/201408/11/8809812_1407775336XQ4L.png "Height =" 564 "/>

4. because it is the first domain controller, select create forest

650) This. width = 650; "style =" border-bottom: 0px; border-left: 0px; border-top: 0px; border-Right: 0px; "Title =" image "border =" 0 "alt =" image "src =" http://img1.51cto.com/attachment/201408/11/8809812_1407775336AR3V.png "Height =" 569 "/>

5. Select the compatibility and directory recovery mode password for the domain controller.

Compatibility is backward compatible. Generally, the server with the lowest level in the domain is used for compatibility.

Restore password in directory mode: if a user in the domain is accidentally deleted, the password can be restored.

650) This. width = 650; "style =" border-bottom: 0px; border-left: 0px; border-top: 0px; border-Right: 0px; "Title =" image "border =" 0 "alt =" image "src =" http://img1.51cto.com/attachment/201408/11/8809812_14077753367AiR.png "Height =" 565 "/>

6. The rest will always be included in the next step and will be installed by default.

If there is a warning, but it does not prevent installation, you can simply ignore it and then install it.

650) This. width = 650; "style =" border-bottom: 0px; border-left: 0px; border-top: 0px; border-Right: 0px; "Title =" image "border =" 0 "alt =" image "src =" http://img1.51cto.com/attachment/201408/11/8809812_1407775338LPXU.png "Height =" 567 "/>

7. Install the Active Directory after restart.

Check whether the installation is successful. You can view the DNS

Whether msdcs.baidu.com or Baidu.com records exist

650) This. width = 650; "style =" border-bottom: 0px; border-left: 0px; border-top: 0px; border-Right: 0px; "Title =" image "border =" 0 "alt =" image "src =" http://img1.51cto.com/attachment/201408/11/8809812_1407775339JUWW.png "Height =" 537 "/>

 

 

Add a computer to a domain

1. Set IP addresses that can communicate with DC and DNS addresses

2. Change the domain name for the computer properties and enter the domain user's domain name.

650) This. width = 650; "style =" border-bottom: 0px; border-left: 0px; border-top: 0px; border-Right: 0px; "Title =" image "border =" 0 "alt =" image "src =" http://img1.51cto.com/attachment/201408/11/8809812_1407775340lo4u.png "Height =" 442 "/>

3. Check whether the client is verified by that domain controller.

Use the SET command

Check that the logoserver is the host that verifies the client.

650) This. width = 650; "style =" border-bottom: 0px; border-left: 0px; border-top: 0px; border-Right: 0px; "Title =" image "border =" 0 "alt =" image "src =" http://img1.51cto.com/attachment/201408/11/8809812_140777534287iK.png "Height =" 450 "/>

 

If the domain is highly available

1. Do not run large services (exchange, lync, Sharepoint, SQL Server) on the domain controller)

2. Do not allow the public network to directly access the Domain Controller

3. Deploy multiple domain controllers for the company

4. Regularly back up the company's Domain Controller

This article from the "plum blossom from bitter cold" blog, please be sure to keep this http://wangjunkang.blog.51cto.com/8809812/1538800

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
active directory schema snap in 2012 active directory domain services configuration wizard 2012 active directory password complexity server 2012 best practices for delegating active directory administration 2012 import users into active directory 2012 from csv application deployment logs sccm 2012 active directory memberof attribute

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More