Windows Server R2 AD DS build

AD DS provides a distributed database that stores and manages information about network resources and application-specific data from directory-enabled applications. Administrators can use AD DS to organize network elements, such as users, computers, and other devices, into hierarchical inline structures. Inline hierarchies include Active Directory forests, domains in the forest, and organizational units (OUs) in each domain. The server running AD DS is called a domain controller.

Organizing network elements into an inline hierarchy provides the following benefits:

• The forest acts as the security boundary for the organization and defines the administrator's authorization scope. By default, the forest contains a single domain called the forest root domain.

• Additional domains can be created in the forest to provide partitioning of AD DS data, allowing organizations to replicate data only where they are needed. This enables AD DS to scale globally on a network with limited available bandwidth. Active Directory domains also support many other core management-related features, including network-wide user identities, authentication, and trust relationships.

• OUs simplify delegation of authorization to facilitate the management of a large number of objects. By delegation, the owner can transfer all or limited authorization on an object to another user or group. Delegation is important because it helps distribute the management of a large number of objects to people who are trusted to perform administrative tasks.

Security integrates with AD DS through login authentication and access control to resources in the directory. With single-point network logins, administrators can manage directory data and organizations across their entire network. Authorized network users can also use a single-point network login to access resources anywhere in the network. Policy-based management simplifies the management of even the most complex networks.

Other AD DS features include the following:

• A set of rules, schema, that defines the categories of objects and properties contained in the catalog, the constraints and restrictions of instances of those objects, and the format of their names.

• A global catalog that contains information about each object in the directory. Regardless of which domain in the directory actually contains directory information, users and administrators can use the global catalog to find the data.

• A query and indexing mechanism so that objects and their properties can be published and discovered by network users or applications.

• A replication service that distributes directory data across the network. All writable domain controllers in the domain participate in replication and contain a complete copy of all directory information for their domain. Any changes to the directory data are replicated to all domain controllers in the domain.

• Operations master roles (also known as flexible single master operations or FSMO). The domain controller that contains the operations master role is designated to perform specific tasks to ensure consistency and eliminate conflicting entries in the directory.

For AD DS installation, refer to the following steps:

1. Change the computer name and IP address

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M02/79/66/wKiom1aPx7LBgebdAABsTLqy3A0545.png "title=" 0.PNG " alt= "Wkiom1apx7lbgebdaabstlqy3a0545.png"/>

2. Enter dcpromo at the operating interface to determine

650) this.width=650; "src=" Http://s3.51cto.com/wyfs02/M00/79/64/wKioL1aPx_zgo5RtAABiFgiq1RM547.png "title=" 1.PNG " alt= "Wkiol1apx_zgo5rtaabifgiq1rm547.png"/>

3. Wait for AD DS binaries to be installed

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M02/79/64/wKioL1aPx_yRxUu0AAAfztkTaAQ809.png "title=" 2.PNG " alt= "Wkiol1apx_yrxuu0aaafztktaaq809.png"/>

4. Select, Next

650) this.width=650; "src=" Http://s2.51cto.com/wyfs02/M00/79/66/wKiom1aPx9TgaJi3AADsBwboNFo202.png "title=" 3.PNG " alt= "Wkiom1apx9tgaji3aadsbwbonfo202.png"/>

5. Select Next

650) this.width=650; "src=" Http://s5.51cto.com/wyfs02/M00/79/64/wKioL1aPx_7Ans8QAABnLoQy3Vk814.png "title=" 4.PNG " alt= "Wkiol1apx_7ans8qaabnloqy3vk814.png"/>

6. Select a new domain in the newly created forest and next

650) this.width=650; "src=" Http://s5.51cto.com/wyfs02/M02/79/64/wKioL1aPx__At1pIAABJvcj92x8089.png "title=" 5.PNG " alt= "Wkiol1apx__at1piaabjvcj92x8089.png"/>

7. Enter the internal domain name "contoso.local", Next

650) this.width=650; "src=" Http://s4.51cto.com/wyfs02/M01/79/64/wKioL1aPx_-TLTS6AABF8IcswV4430.png "title=" 6.PNG " alt= "Wkiol1apx_-tlts6aabf8icswv4430.png"/>

8. Select the forest functional level, next

650) this.width=650; "src=" Http://s4.51cto.com/wyfs02/M00/79/66/wKiom1aPx9bhW0-ZAABhAmsjOLE528.png "title=" 7.PNG " alt= "Wkiom1apx9bhw0-zaabhamsjole528.png"/>

9. Default, Next

650) this.width=650; "src=" Http://s1.51cto.com/wyfs02/M02/79/65/wKioL1aPyADQRpTCAABYAnewWjs101.png "title=" 8.PNG " alt= "Wkiol1apyadqrptcaabyanewwjs101.png"/>

10. Select "Yes"

650) this.width=650; "src=" Http://s5.51cto.com/wyfs02/M00/79/65/wKioL1aPyAHCCscvAAA8gnh7d2Q728.png "title=" 9.PNG " alt= "Wkiol1apyahccscvaaa8gnh7d2q728.png"/>

11. Select the path to the database and log storage, next

650) this.width=650; "src=" Http://s4.51cto.com/wyfs02/M01/79/65/wKioL1aPyAGTkAbhAABXa1mNymM734.png "title=" 10.PNG "alt=" Wkiol1apyagtkabhaabxa1mnymm734.png "/>

12. Enter the directory Service restore password, next

650) this.width=650; "src=" Http://s4.51cto.com/wyfs02/M01/79/65/wKioL1aPyAKTVXzJAABQLwVQXMk375.png "title=" 11.PNG "alt=" Wkiol1apyaktvxzjaabqlwvqxmk375.png "/>

13. Select, Next

650) this.width=650; "src=" Http://s2.51cto.com/wyfs02/M02/79/65/wKioL1aPyAKxaEz2AABc2wTjf6Y596.png "title=" 12.PNG "alt=" Wkiol1apyakxaez2aabc2wtjf6y596.png "/>

14. Tick "reboot after completion"

650) this.width=650; "src=" Http://s4.51cto.com/wyfs02/M00/79/66/wKiom1aPx9iB5j8eAABqb_pkLSQ027.png "title=" 13.PNG "alt=" Wkiom1apx9ib5j8eaabqb_pklsq027.png "/>

Wait for the installation to complete to restart the computer, and the first domain controller in this organization has completed installation.

This article from "Lizm" blog, reproduced please contact the author!

Windows Server R2 AD DS build