Step-by-step configuring additional domain controller on Server 2008 R2 Core


Important documentation:

Unattended mode to install and remove Active Directory Domain Services
Active Directory Technet Links

Our tasks include:

– install Server 2008 R2 SP1 Core (i hope, you have already done it)
– change server name
– set NIC settings
– activate server
– turn on Windows Update Services and download/install the latest applicable updates
– turn on Remote Desktop connection to our server
– promote server to additional DC in existing domain
– check result

Installation steps

1. After successful installation Server 2008 R2 change your administrator password, log on to server and change server name using sconfig.cmd. Then restart your server.

Sconfig.cmdrenamepc

2. Set static IP (recommended) or enable DHCP (don’t forget to reserve your ip on DHCP server) on your NIC using option 8 of sconfig.cmd

nic_settings_1
Select option 8 and your NIC index
Choose option 1 to set IP address
Choose option 1 to set IP address
Type D or S to use DHCP or Static IP Address
Type D or S to use DHCP or Static IP Address

3. Use cscript c:\windows\system32\slmgr.vbs to your server activation 

Server 2008 R2 Core Activation
Use -ipk parameter to change your product key and -ato for activation with one

4. Turn on Windows Update Services and download/install latest updates using sconfig.cmd again

Select option 5 to set WSU for automatic searching updates
Select option 5 to set WSU for automatic searching updates
Select option 6 to download and install updates
Select option 6 to download and install updates
Select A to download and install ALL applicable updates
Select A to download and install ALL applicable updates
Wait while WSU downloads and installs ALL applicable update, then restart your server to apply ones
Wait while WSU downloads and installs ALL applicable update, then restart your server to apply ones

5. Enable RDP for remote management using sconfig.cmd option 7

Select option 7 > e to enable rdp and choose option 2 to allow any RDP versions
Select option 7 > e to enable rdp and choose option 2 to allow any RDP versions

6. I hope, you read about unattanded installation domain controller (Unattended mode to install and remove Active Directory Domain Services) . So, we have to create additional file with configuration of promotion (dcpromo). Type notepad yourfilename.txt. By default, your file saves in %USERPROFILE%.Creating_file_for_dcpromo

Paste to this file following strings (don’t forget to edit them 🙂 ) and save txt:

[DCINSTALL]
UserName=rlevchenko
UserDomain=test.com
Password=Pass123
InstallDNS=Yes
ConfirmGC=Yes
ReplicaOrNewDomain=replica
ReplicaDomainDNSName=test.com
SafeModeAdminPassword=Pass123
RebootOnCompletion=Yes

Then execute dcpromo /unattend:<path of the answer file>. Notice, after dcpromo implementation server will automatically reboot because of RebootOnCompletion=Yes.

7. Check dcpromo log for any warnings or error

checking_dcpromo_log
Type cd %systemroot%\debug and open DCPROMO.LOG. Verify that there no any errors and warnings during replica creation

8. On your primary controller check that new server for replica has been added 

WIN+R - type dssite.msc and check that new replica server has been added. Also , check new server properties for replica sources
WIN+R – type dssite.msc and check that new replica server has been added. Also , check new server properties for replica sources

9. Check DNS-records

Open DNS dnsmgmt.msc and check that A record has been added
Open DNS dnsmgmt.msc and check that A record has been added

10. Check Domain Controller container in Active Directory Users and Computers

Open dsa.msc -> Domain Controllers and check that new DC has been added successfully
Open dsa.msc -> Domain Controllers and check that new DC has been added successfully

12. Our installation is complete. Thanks for your comments!

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

%d bloggers like this: