Windows Active Directory Management (1) Overview Deployment Domain Services

(a) AD brief:

1. Active Directory: is a directory service in a Windows network, and for Active Directory Domain Services AD DS concepts, there are two active directories that are a directory: Active Directory is a service.

Advantages and Features: Centralized management, convenient access to network resources, scalability.

2. Domain: Is the core snap-in for organizing and storing resources.

3. Domain controller: is a computer that has the Active Directory service installed.

4. Object: Consists of a set of properties.

5. Attribute (Attribute): Is the data used to describe the object.

6. Container (Container): Is a special kind of Active Directory object. (Domains and organizational units are containers)

7. Group Policy: Many configurations can be made for computers and users, applied on a domain, and users and computers that affect the entire domain are applied on the organizational unit, affecting users and computers throughout the OU.

(ii) AD Description:

1. Domain structure: Logical Structure: Single domain, domain tree, domain forest, organizational unit

Physical Structure: Site domain controller

(There are three main types of Active Directory data that replicate between domain controllers-domain data, configuration data, schema data)

1. 
   

2. Ad Lightweight Directory Service: directory service is suitable for read processing, that is, if your application reads data more frequently than it writes data, consider implementing a catalog suit if your application writes or modifies data more frequently than it reads data, consider implementing a relational database.

3. The main differences between workgroup and domain: Different management mode, peer network-c/s, workgroup: Less decentralized management of network resources is suitable for small enterprises. Domains: Logically organize the resources on the network as a whole and centralize management for large networks.

(c) Installing the DC:

1. Install the DC condition: The installer must be a local administrator, the operating system meets Windows Server 2003 above, in addition to the Web Edition, support for the DNS infrastructure can also install AD DS while DNS is installed, and at least one partition locally is the NTFS file system. Configure a static IP address and subnet mask.

2. Run the DCPROMO command using the Administrator account (Administrator). 650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M00/98/D8/wKiom1lBA9PCOgqcAADQ5irzU04331.png-wh_500x0-wm_ 3-wmp_4-s_858459183.png "title=" Qq20170614173531.png "alt=" Wkiom1lba9pcogqcaadq5irzu04331.png-wh_50 "/>

3. In the Select a deployment configuration, name new domain in the New forest.

650) this.width=650; "Src=" https://s1.51cto.com/wyfs02/M01/98/D8/wKioL1lBBaPjb5IGAABfBksCuTk818.png-wh_500x0-wm_ 3-wmp_4-s_2801932514.png "style=" Float:none; "title=" 2.png "alt=" Wkiol1lbbapjb5igaabfbkscutk818.png-wh_50 "/>

4. Enter the domain name (benet.com) on the named forest root domain page

650) this.width=650; "Src=" https://s3.51cto.com/wyfs02/M00/98/D8/wKioL1lBBaTQeyjrAABRBb-qm24008.png-wh_500x0-wm_ 3-wmp_4-s_3908835178.png "style=" Float:none; "title=" 3.png "alt=" Wkiol1lbbatqeyjraabrbb-qm24008.png-wh_50 "/>

650) this.width=650; "Src=" https://s3.51cto.com/wyfs02/M02/98/D8/wKioL1lBBaXQOdsJAABrw6M8vBg234.png-wh_500x0-wm_ 3-wmp_4-s_2021457120.png "style=" Float:none; "title=" 4.png "alt=" Wkiol1lbbaxqodsjaabrw6m8vbg234.png-wh_50 "/>

5. On the set forest functional Level page, select the forest functional level for Windows Server R2.

650) this.width=650; "Src=" https://s3.51cto.com/wyfs02/M01/98/D8/wKioL1lBBaaAZ4f7AAC7mChqqcY866.png-wh_500x0-wm_ 3-wmp_4-s_3630780710.png "style=" Float:none; "title=" 5 he. png "alt=" wkiol1lbbaaaz4f7aac7mchqqcy866.png-wh_50 "/>

6. Follow the next step

650) this.width=650; "Src=" https://s3.51cto.com/wyfs02/M02/98/D9/wKioL1lBBzTyFdmwAAC5eU3u4EQ816.png-wh_500x0-wm_ 3-wmp_4-s_783395331.png "style=" Float:none; "title=" 11.png "alt=" Wkiol1lbbztyfdmwaac5eu3u4eq816.png-wh_50 "/>

650) this.width=650; "Src=" https://s3.51cto.com/wyfs02/M00/98/D9/wKiom1lBBzbTAGBEAADzQcHYpBQ276.png-wh_500x0-wm_ 3-wmp_4-s_3266753909.png "style=" Float:none; "title=" 12.png "alt=" Wkiom1lbbzbtagbeaadzqchypbq276.png-wh_50 "/>

650) this.width=650; "Src=" https://s5.51cto.com/wyfs02/M00/98/D9/wKioL1lBBzfzgVuwAACyLh1OlNM490.png-wh_500x0-wm_ 3-wmp_4-s_3948138906.png "style=" Float:none; "title=" 13.png "alt=" Wkiol1lbbzfzgvuwaacylh1olnm490.png-wh_50 "/>

7. On the Administrator password for Directory Services Restore Mode page, enter confirm a strong password that is used in the backup restore.

650) this.width=650; "Src=" https://s3.51cto.com/wyfs02/M01/98/D9/wKiom1lBBziiwhZnAACtnDGU6sc899.png-wh_500x0-wm_ 3-wmp_4-s_3935775932.png "style=" Float:none; "title=" 14.png "alt=" Wkiom1lbbziiwhznaactndgu6sc899.png-wh_50 "/>

(iv) Unattended mode install DC:

1. Open Notepad, enter the following, save in the C drive dcinstall.txt input command dcpromo/unattend:c:\dcinstall.txt

650) this.width=650; "Src=" https://s2.51cto.com/wyfs02/M01/98/D9/wKioL1lBCrPSyylgAADVSXm62OE314.png-wh_500x0-wm_ 3-wmp_4-s_56342402.png "title=" Aa.png "alt=" Wkiol1lbcrpsyylgaadvsxm62oe314.png-wh_50 "/>

[DCInstall]

Installdns=yes

Dnsonnetwork=yes

Newdomain=forest

Newdomaindnsname=benet.com

Domainnetbiosname=benet

Replicaornewdomain=domain

Forestlevel=4

Domainlevel=4

Databasepath= "%systemroot%\NTDS"

Logpath= "%systemroot%\NTDS"

Sysvolpath= "%systemroot%\sysvol"

Safemodeadminpassword=123.com

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M01/98/D9/wKiom1lBDP_xiBO-AADySyVCwtU584.png-wh_500x0-wm_ 3-wmp_4-s_4240183207.png "title=" Aaa.png "alt=" Wkiom1lbdp_xibo-aadysyvcwtu584.png-wh_50 "/>

Wait for the installation to restart automatically after successful installation.

(v) client plus domain:

1. Windows 7 domain, condition: Ensure that the computer and domain controllers are connected to each other and that the correct DNS addresses are configured.

650) this.width=650; "Src=" https://s4.51cto.com/wyfs02/M02/98/D9/wKioL1lBD2rzIlmVAADFeXImVNo463.png-wh_500x0-wm_ 3-wmp_4-s_3616580521.png "style=" Float:none; "title=" B.png "alt=" Wkiol1lbd2rzilmvaadfeximvno463.png-wh_50 "/>

2. Select Computer Properties, Change Settings button, open System Properties, change-member of "benet.com"

650) this.width=650; "Src=" https://s2.51cto.com/wyfs02/M00/98/DA/wKiom1lBD23yFPJAAAI1EXi4Uck108.png-wh_500x0-wm_ 3-wmp_4-s_1172778240.png "style=" Float:none; "title=" C.png "alt=" Wkiom1lbd23yfpjaaai1exi4uck108.png-wh_50 "/>

3. Enter the domain user account and password in the Windows Security dialog box, click OK

650) this.width=650; "Src=" https://s5.51cto.com/wyfs02/M02/98/DA/wKiom1lBEYfiZcUBAA2w-nNg0NQ982.png-wh_500x0-wm_ 3-wmp_4-s_2353574248.png "title=" D.png "alt=" Wkiom1lbeyfizcubaa2w-nng0nq982.png-wh_50 "/>

This article from the "in Read it" blog, reproduced please contact the author!

Windows Active Directory Management (1) Overview Deployment Domain Services