Configure the domain controller

Domain controllers store data and manage user and domain interactions, including user logon processes, authentication, and directory searches. If you plan to use this server to provide the Active Directory directory service to network users and computers, configure this server as a domain controller.
To configure a server as a domain controller, install Active Directory on the server. There are four options available in the Active Directory Installation Wizard. You can create an additional domain controller in an existing domain, a domain controller for a new child domain, a domain controller for a new domain tree, or a domain controller for a new forest.
To configure the domain controller CPANDL-DC, you must:
  • Install Windows Server 2003 with SP2.
  • Configure TCP/IP properties.
  • Install Active Directory.
  • Raise the Active Directory domain functional level to Windows Server 2003.
  • Create user accounts.
  • Create groups for the user accounts.
For each user account and group that you configure with AD RMS, you need to add an e-mail address and then assign the users to groups.
First, install Windows Server 2003 with SP2 on a stand-alone server.
To install Windows Server 2003, Standard Edition
Start your computer by using the Windows Server 2003 product CD. (You can use any edition of Windows Server 2003 except the Web Edition to establish the domain.)
Follow the instructions that appear on your computer screen, and when prompted for a computer name, type CPANDL-DC.
Next, configure TCP/IP properties so that CPANDL-DC has a static IP address of 10.0.0.1. In addition, configure 10.0.0.1 as the IP address for the DNS server.
  1. To configure TCP/IP properties on CPANDL-DC
  2. Log on to CPANDL-DC as a member of the local Administrators group.
  3. Click Start, point to Control Panel, point to Network Connections, click Local Area Connection, and then click Properties.
  4. On the General tab, click Internet Protocol (TCP/IP), and then click Properties.
  5. Click the Use the following IP address option. In the IP address box, type 10.0.0.1. In the Subnet mask box, type 255.255.255.0.
  6.  Click OK, and then click Close to close the Local Area Connection Properties dialog box.
  7. Next, configure the computer as a domain controller.

To configure CPANDL-DC as a domain controller
  1. Click Start, and then click Run. In the Open box, type dcpromo, and then click OK.
  2. On the Welcome page of the Active Directory Installation Wizard, click Next.
  3. Select the Domain controller for a new domain option, and then click Next.
  4. Select the Domain in a new forest option, and then click Next.
  5. Select the No, just install and configure DNS on this computer option, and then click Next.
  6. In the Full DNS name for new domain box, type cpandl.com, and then click Next.
  7. In the Domain NetBIOS name box, type CPANDL, and then click Next three times.
  8. Select the Permissions compatible only with Windows 2000 or Windows Server 2003 operating systems option, and then click Next.
  9. In the Restore Mode Password and Confirm password boxes, type a strong password. Click Next.
  10. Click Next again.
  11. When the Active Directory Installation Wizard is done, click Finish.
  12. Click Restart Now.
Note :- You must restart the computer after you complete this procedure.
Next, you must raise the domain functional level to Windows Server 2003 so that Active Directory Universal groups can be used.
  1.  To raise the domain functional level to Windows Server 2003
  2. Log on to CPANDL-DC with the CPANDL\Administrator account or another user account in the Domain Admins group.
  3. Click Start, point to Administrative Tools, and then click Active Directory Users and Computers.
  4. Right-click cpandl.com, and then click Raise domain functional level.
  5. In the list under Select an available domain functional level, click Windows Server 2003, and then click Raise.
  6. Click OK to confirm the selection.  
  7. Note :-You cannot change the domain functional level once you have raised it.
  8.  Close the Active Directory Users and Computers console.
Next, add the user accounts shown in the following table to Active Directory. Use the procedure following the table to create the user accounts.

 Account Name
User Logon Name
E-mail address
Group
ADRMSSRVC
ADRMSSRVC


ADRMSADMIN
ADRMSADMIN

Enterprise Admins
Nicole Holliday
NHOLLIDA
nhollida@cpandl.com
Employees, Finance
LimorHenig
LHENIG
lhenig@cpandl.com
Employees, Marketing
Stuart Railson
SRAILSON
srailson@cpandl.com
Employees, Engineering

To add new user accounts
  1. Click Start, point to Administrative Tools, and then click Active Directory Users and Computers.
  2. In the console tree, expand cpandl.com.
  3. Right-click Users, point to New, and then click User.
  4. In the New Object – User dialog box, type ADRMSSRVC in the Full name and User logon name boxes, and then click Next.
  5. In the New Object – User dialog box, type a password of your choice in the Password and Confirm password boxes. Clear the User must change password at next logon check box, click Next, and then click Finish.
  6. Perform steps 3-6 for each of the following users: ADRMSADMIN, Nicole Holliday, LimorHenig, and Stuart Railson.
  7. Next, add e-mail addresses to all user accounts.
To add e-mail addresses to user accounts
1.In the Active Directory Users and Computers console, right-click Nicole Holliday, click Properties, type nhollida@cpandl.com in the E-mail box, and then click OK.
2.Repeat step 1 for LimorHenig and Stuart Railson, using the e-mail addresses for each account from the table.
3.Close the Active Directory Users and Computers console.

0 comments:

Post a Comment