MS Active Directory, DNS and DHCP- All About

MS Active Directory, DNS, and DHCP All About

Image result for what is active directory

Active Directory is a database that keeps track of all the user accounts and passwords in your organization. It allows you to store your user accounts and passwords in one protected location, improving your organization’s security. Active Directory is subdivided into one or more domains.

Image result for what is active directory

How To Create Active Directory (AD)  Forest 

I. Install Active Directory
  1. Add Roles and Features. First, Open server manager-> Select Add roles and features from Dashboard/Mange options. …
  2. Installation Type. Select Role based features option in Add Roles and Features Wizard page. …
  3. Select Server and Server Role. …
  4. Add Features. …
  5. Install AD.

II. Step  by Step Create New AD Forest 1st Domain Controller.

1.Using Server Manager (UI):

In order to make the windows server 2012 domain controller we will install ADDS (Active Directory Domain Services) role from the server manager on Windows Server 2012.

All the Latest security updates must applied before installing the Role.

Let’s change the server name to “MCP-DC01”

 I

Illustrated Example Show The newly DC will called : “MCP-DC01.

systemcomputerobject

Example Illustrated A New AD Forest Created.  

newdomainisagoodthing
Open Command prompt window, and run following command to view the FSMO role status:
Netdom query fsmo:

FSMO output example:

C:\Windows\system32>netdom query fsmo
Schema master mcp-dc01.mcp.local
Domain naming master mcp-dc01.mcp.local
PDC mcp-dc01.mcp.local
RID pool manager mcp-dc01.mcp.local
Infrastructure master mcp-dc01.mcp.local
The command completed successfully.

dsmso

So we have now learned how to install Active Directory on Windows Server 2012 from the Active
Directory Domain Services Configuration Wizard by tapping or clicking the Promote This Server To Domain Controller link on the Installation Progress page.
This wizard replaces Dcpromo.exe, which was used previously for promoting domain controllers. The wizard also will run Adprep.exe to prepare schema as appropriate. If you do not run Adprep.exe
separately beforehand and you are installing the first domain controller that runs Windows Server 2012 in an existing domain or forest, the wizard will prompt you to supply credentials to run Adprep
commands. To prepare a forest, you need to provide credentials for a member of the Enterprise Admins group, the Schema Admins group, and the Domain Admins group in the domain that hosts the schema master. To prepare a domain, you need to provide credentials for a member of the Domain Admins group.

Newly Domain Controller Created in MCP forest. 

dcnew

IV. What is DNS?

Domain Name Servers (DNS) are the Internet’s equivalent of a phone book. They maintain a directory of domain names and translate them to Internet Protocol (IP) addresses. This is necessary because, although domain names are easy for people to remember, computers or machines, access websites based on IP addresses.

  1. How To Install DNS on Windows 2012 Domain.

*Install DNS Server Role in Server 2012. To add a new role to Windows Server 2012, We will use Server Manager User Interface.

a. Start Server Manager, click the Manage menu, or main page link- select Add Roles and Features.

installdns

b.Click Add Roles and Features Wizard Before you begin window that pops up.

installdns2

c. Click Next – Keep Default Role-based or feature-based installation

installdns3

d. Select DNS and Click Next. 

Image result for add roles and feature wizard dns

2. Configure DNS for Organization.

a, Open Server Manager —->Tools—>Select DNS

dns as selection under tools and Administrtortools

b. Click the Action menu, and select Configure a DNS Server. This brings up the Configure a DNS Server wizard.

dnsmanager


configdns

There are three options here. You can either: configure a forward lookup zone only, create forward and reverse lookup zone, or configure root hints only.

A forward lookup zone allows you to do the standard DNS function of taking a name and resolving it into an IP address.

A reverse lookup zone allows you to do the opposite, taking an IP address and finding its name. For example, if a user is set up to print to a printer with an IP address of 10.20.12.114, but you need to know what name that printer goes by so you can find it, a reverse lookup can help. (“Ah, hah! It’s you Third Floor Vending Room Printer #1. Why you give me so much trouble?)

Root hints only will not create a database of name records for lookups, but rather will just have the IP addresses of other DNS servers where records can be found. If you already have DNS setup on your network, you’ll probably want to continue using the same configuration you already have. If not, use forward and backward for most situations. (Backup zones typically don’t hurt anything, and they are nice to have when the need arises.)

After you’ve made your section, click Next.

Now, you choose whether this server will maintain the zone, or if this server will have a read-only copy of the DNS records from another server.

Next enter your zone name. If this is your first DNS server, then this needs to be the root zone name for your entire organization. For example, my zone name might be MCP.LOCAL.

If however, this server will be authoritative only for a subset, and other DNS servers will be responsible for other zones, then the name will need to reflect that. For example, US.MCP.LOCAL would be the zone name for just the American part of my vast corporate empire 🙂 Click next when you have entered the name.

Now, you need to choose the file name where the DNS records will be stored. The default filename is to add a .dns extension to the name of the zone you chose in the previous window. Unless you have a corporate policy stating otherwise, stick with the convention to make things easier on yourself down the line.

Next you select how this server will respond to Dynamic Updates. Although there are three choices here, only two should actually be used in production. Select the first option to allow only secure dynamic updates if you are integrating your DNS with Active Directory. Select do not allow dynamic updates if your DNS is not integrated with Active Directory and you don’t want to allow dynamic updates. Do not allow unsecured dynamic updates unless you really know what you are doing and have a very good reason for doing so.

Up next is the option to configure forwarders. If your DNS server ever gets a query for which it has no record, it can forward that request on to another DNS server to see if it has the answer.

 

V. What is DHCP?

Dynamic Host Configuration Protocol (DHCP) is a network protocol that enables a server to automatically assign an IP address to a computer from a defined range of numbers (i.e., a scope) configured for a given network

  1. How To Install DHCP on Windows 2012 Domain.-TBA

Video Tutorials-  

Introductory of Active Directory – Directory Services on Windows 2012.

Windows 2012 DC Promotion and Demotion, Including DNS Records

Installing Active Directory, DNS and DHCP to Create a Windows 2012 Domain Controller.

Reference
How to Install Active Directory 2012
http://www.thegeekstuff.com/2014/11/install-active-directory/

How To Install Active Directory on Windows 2012.
https://gallery.technet.microsoft.com/Active-Directory-a008c4d1