Active Directory 2008: AD DS Installation Facts

AD DS Installation Facts

The following list contains the requirements for installing Active Directory Domain Services (AD DS):

  • You must have membership in the Domain Admins, Schema Admins, and Enterprise      Admins group.
  • You must have properly configured static IP addresses and Domain Name System      (DNS) server addresses.
  • You must verify that a DNS infrastructure is in place on your network before      you add AD DS to create a domain or forest.
  • Use local, fixed disks for the volumes that store the database, log files, and      SYSVOL folder for AD DS.
  • For  added security, place the database and log files on a volume with the NTFS      file system.

There are four methods for Active Directory Domain Services (AD DS) installation:

Method Description
Active Directory Domain Services Installation Wizard AD DS installation using wizards   requires the following actions:

  • In Server Manager, run the        Add Roles Wizard to install the Active Directory binaries.
  • Run dcpromo.exe to run        the Active Directory Domain Services Installation Wizard. This wizard        can be used to install new 2008 forests, domains, and domain        controllers.
Command Line At the command line, use the dcpromo   command combined with unattended installation switches and parameter values   to create forests, domains, and domain controllers. Use the following   switches to customize the installation:

  • Use /NewDomain with        the Forest, Tree, or Child switch to specify the        type of new domain.
  • Use /DomainLevel or /ForestLevel        with the following options:
    • 0 = Windows 2000 Server         Native
    • 2 = Windows Server 2003         Native
    • 3 = Windows Server 2008
  • Use /databasePath:C:\Windows\ntds        /logPath:C:\Windows\ntdslogs /sysvolpath:C:\Windows\sysvol to        specify the location of the database file, directory service log files,        and system volume (SYSVOL) folder, respectively.
  • Use /DNSOnNetwork to        specify whether DNS service is available on the network.
  • Use /NewDomainDNSName        to specify a fully qualified domain name (FQDN) for the new domain.

Note: For a   complete list of unattended installation switches, including default values,   allowed values, and descriptions, type dcpromo /?:Promotion at the   command prompt.

Answer file An answer file is a list of   Active Directory configuration values in a text file which is used to install   AD DS on either a full installation of Windows Server 2008 or a   Server Core installation. To create an answer file you can:

  • Run the Active Directory        Domain Services Installation Wizard and export your choices to a file.
  • Create or edit the answer        file directly in a text editor.

To perform the install using the   answer file, run dcpromo /unattend:C:\unattend.txt, using the name of   the answer file you created.

AD DS installation from media Using media is an alternate method   of AD DS installation. The media contains the unattended installation   parameters which will create additional domain controllers, as well as the   Active Directory database. During installation, the Active Directory database   is copied from the media instead of replicated from another domain   controller. Use the media installation method if you need to perform a domain   controller install where the domain controller will not be able to contact   another domain controller during installation.

Use one of the following to create the installation media:

  • Run ntdsutil.exe.
  • Run Windows Server backup in        Windows Server 2008. A critical-volumes backup includes all files on the        volumes that are required to recover AD DS which is significantly        more space than required for AD DS installation.

To install a domain controller using media, use one of the   following methods:

  • In the Active Directory        Domain Services Installation Wizard, use the Install from Media page        to refer to the location of the shared folder or removable media.
  • Use the /ReplicationSourcePath        parameter during an unattended installation to specify the location of        the shared folder or removable media.

Be aware of the following when installing a RODC:

  • The      first Windows Server 2008 domain controller in a forest cannot be a Read      Only Domain Controller (RODC). If your forest does not have a Windows      Server 2008 domain controller, install a writable domain controller prior      to installing the RODC.
  • You      cannot convert an RODC to a full installation, nor can you convert a full      installation to an RODC.
  • You      cannot upgrade a Windows Server 2003 domain controller as a Windows Server      2008 read-only domain controller. To make a Windows Server 2003 domain      controller an RODC, first remove AD DS, then re-install the domain      controller as an RODC.

 

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s