AD DS Installation Facts
The following list contains the requirements for installing Active Directory Domain Services (AD DS):
- You must have membership in the Domain Admins, Schema Admins, and Enterprise Admins group.
- You must have properly configured static IP addresses and Domain Name System (DNS) server addresses.
- You must verify that a DNS infrastructure is in place on your network before you add AD DS to create a domain or forest.
- Use local, fixed disks for the volumes that store the database, log files, and SYSVOL folder for AD DS.
- For added security, place the database and log files on a volume with the NTFS file system.
There are four methods for Active Directory Domain Services (AD DS) installation:
|Active Directory Domain Services Installation Wizard||AD DS installation using wizards requires the following actions:
|Command Line||At the command line, use the dcpromo command combined with unattended installation switches and parameter values to create forests, domains, and domain controllers. Use the following switches to customize the installation:
Note: For a complete list of unattended installation switches, including default values, allowed values, and descriptions, type dcpromo /?:Promotion at the command prompt.
|Answer file||An answer file is a list of Active Directory configuration values in a text file which is used to install AD DS on either a full installation of Windows Server 2008 or a Server Core installation. To create an answer file you can:
To perform the install using the answer file, run dcpromo /unattend:C:\unattend.txt, using the name of the answer file you created.
|AD DS installation from media||Using media is an alternate method of AD DS installation. The media contains the unattended installation parameters which will create additional domain controllers, as well as the Active Directory database. During installation, the Active Directory database is copied from the media instead of replicated from another domain controller. Use the media installation method if you need to perform a domain controller install where the domain controller will not be able to contact another domain controller during installation.
Use one of the following to create the installation media:
To install a domain controller using media, use one of the following methods:
Be aware of the following when installing a RODC:
- The first Windows Server 2008 domain controller in a forest cannot be a Read Only Domain Controller (RODC). If your forest does not have a Windows Server 2008 domain controller, install a writable domain controller prior to installing the RODC.
- You cannot convert an RODC to a full installation, nor can you convert a full installation to an RODC.
- You cannot upgrade a Windows Server 2003 domain controller as a Windows Server 2008 read-only domain controller. To make a Windows Server 2003 domain controller an RODC, first remove AD DS, then re-install the domain controller as an RODC.