03-01-install the first domain controller and DNS server on Win 2019 Core 01/28 Update SLTechnology News&Howtos

03-01-install the first domain controller and DNS server on Win 2019 Core

2025-01-28 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Servers >

Shulou(Shulou.com)06/02 Report--

"actual combat training for system engineers"

-03-deploy domain controllers and domain name servers

-01-install the first domain controller and DNS server

On Win 2019 Core

Author: endless learning

QQ communication group: 454544014

# # #

* *************************

# #

# install the first domain controller and DNS server

# #

Cmd

PowerShell

PS C:\ > HostName

011-DC01

PS C:\ > IPConfig / ALL

Windows IP configuration

Hostname. . . . . . . . . . . . . : 011-DC01

Main DNS suffix. . . . . . . . . . . :

Node type. . . . . . . . . . . . : mixed

IP routing is enabled. . . . . . . . . . : no

The WINS agent is enabled. . . . . . . . . : no

Ethernet Adapter Ethernet0:

Connect a specific DNS suffix. . . . . . . :

Description. . . . . . . . . . . . . . . Intel (R) 82574L Gigabit Network Connection

Physical address. . . . . . . . . . . . . : 00-0C-29-9E-CB-6F

DHCP is enabled. . . . . . . . . . . : no

Automatic configuration is enabled. . . . . . . . . . : yes

Local link IPv6 address. . . . . . . . : fe80::24ac:4d2f:e6ff:de69%4 (preferred)

IPv4 address. . . . . . . . . . . . : 10.1.1.11 (preferred)

Subnet mask. . . . . . . . . . . . : 255.255.255.0

Default gateway. . . . . . . . . . . . . : 10.1.1.254

DHCPv6 IAID. . . . . . . . . . . : 100666409

DHCPv6 client DUID. . . . . . . : 00-01-00-01-23-9D-90-74-00-0C-29-9E-CB-6F

DNS server. . . . . . . . . . . : 10.1.1.11

10.1.1.12

NetBIOS on TCPIP. . . . . . . : enabled

PS C:\ >

# Step 1

Rename-Computer-NewName 011-DC01 Restart-Computer-Force

# Step 2

New-NetIPAddress-InterfaceIndex 12-IPAddress 10.1.1.11-PrefixLength 24 Set-DNSClientServerAddress-InterfaceIndex 12-ServerAddresses 10.1.1.11

# Step 3 install the active Directory role

Install-WindowsFeature-Name AD-Domain-Services

# Step 4

# Import PowerShell command module of active directory

Import-Module ADDSDeployment

# install ADDS and DNS

Install-ADDSForest-DomainName "i-x-Cloud.com"-DomainNetbiosName "i-x-Cloud"-ForestMode "7"-DomainMode "7"-InstallDns:$True-DatabasePath "D:\ Windows\ NTDS"-LogPath "D:\ Windows\ NTDS"-SysvolPath "D:\ Windows\ SYSVOL"-NoRebootOnCompletion:$True-Force:$True

# Step 5

Restart-Computer-Force

# Step 6

# modify DNS 127.0.0.1 of IP to 10.1.1.11 10.1.1.12 (*)

Enter-sconfig.cmd, enter

Sconfig.cmd

Setting-IP addr

Select-8

Select option: 1

Option 2

10.1.1.11

10.1.1.12

Select option: 4

Enter

fifteen

# Step 7 (prepare a virtual machine to add a domain, install AD management tools and DNS management tools, and then do the following!

# New DNS reverse region 10.1.1.x

# create a new PTR record 10.1.1.11 011-DC01.i-x-Cloud.com

PowerShell

CD\

# Add-DnsServerPrimaryZone [- ReplicationScope] [[- DirectoryPartitionName]]-NetworkId [- AsJob] [- CimSession] [- ComputerName] [- DynamicUpdate] [- LoadExisting] [- PassThru] [- ResponsiblePerson] [- ThrottleLimit] [- Confirm] [- WhatIf] []

# add reverse lookup zone

Add-DnsServerPrimaryZone-NetworkId 10.1.1.0 amp 24-ReplicationScope "Forest"-DynamicUpdate Secure

# add PTR record

Add a PTR record

# Add-DnsServerResourceRecordPtr-Name "17"-ZoneName "0.168.192.in-addr.arpa"-AllowUpdateAny-TimeToLive 01:00:00-AgeRecord-PtrDomainName "host17.contoso.com"

Add-DnsServerResourceRecordPtr-Name "11"-ZoneName "1.1.10.in-addr.arpa"-AllowUpdateAny-TimeToLive 01:00:00-AgeRecord-PtrDomainName "011-DC01.i-x-Cloud.com"

# Test A record and PTR record (there is a problem. Server unknown,:: 1)

Nslookup

011-DC01.i-x-Cloud.com

10.1.1.11

Windows 2019 plus domain:

I-x-Cloud.com

Install AD management tools, DNS management tools

C:\ Users\ Administrator.i-x-Cloud > nslookup

Default server: 011-DC01.i-x-Cloud.com

Address: 10.1.1.11

> 011-DC01.i-x-Cloud.com

Server: 011-DC01.i-x-Cloud.com

Address: 10.1.1.11

Name: 011-DC01.i-x-Cloud.com

Address: 10.1.1.11

> 10.1.1.11

Server: 011-DC01.i-x-Cloud.com

Address: 10.1.1.11

Name: 011-DC01.i-x-Cloud.com

Address: 10.1.1.11

> 100-Admin01.i-x-Cloud.com

Server: 011-DC01.i-x-Cloud.com

Address: 10.1.1.11

Name: 100-Admin01.i-x-Cloud.com

Address: 10.1.1.100

> 10.1.1.100

Server: 011-DC01.i-x-Cloud.com

Address: 10.1.1.11

Name: 100-Admin01.i-x-Cloud.com

Address: 10.1.1.100

Test whether the domain controller is normal? / / very critical!

DCDiag

C:\ Users\ Administrator > dcdiag

Directory server diagnostics

Performing initialization settings:

Trying to find the primary server.

Primary server = 011-DC01

* identified AD forest.

Finished collecting initialization information.

The required initialization tests are in progress

Testing server: Default-First-Site-Name\ 011-DC01

Start testing: Connectivity

. 011-DC01 has passed the test Connectivity

Performing major tests

Testing server: Default-First-Site-Name\ 011-DC01

Start testing: Advertising

. 011-DC01 has passed the test Advertising

Start testing: FrsEvent

. 011-DC01 has passed the test FrsEvent

Start testing: DFSREvent

Warning or error events have occurred in the last 24 hours after SYSVOL sharing. Failed SYSVOL replication issues can cause Group Policy issues.

. 011-DC01 failed the test DFSREvent

Note:

Patch the Windows 2019 Core system before installing DC.

Please test the DCDiag 24 hours after installing DC.

C:\ Users\ Administrator > dcdiag

Directory server diagnostics

Performing initialization settings:

Trying to find the primary server.

Primary server = 011-DC01

* identified AD forest.

Finished collecting initialization information.

The required initialization tests are in progress

Testing server: Default-First-Site-Name\ 011-DC01

Start testing: Connectivity

. 011-DC01 has passed the test Connectivity

Performing major tests

Testing server: Default-First-Site-Name\ 011-DC01

Start testing: Advertising

. 011-DC01 has passed the test Advertising

Start testing: FrsEvent

. 011-DC01 has passed the test FrsEvent

Start testing: DFSREvent

. 011-DC01 has passed the test DFSREvent

Start testing: SysVolCheck

. 011-DC01 has passed the test SysVolCheck

Start testing: KccEvent

. 011-DC01 has passed the test KccEvent

Start testing: KnowsOfRoleHolders

. 011-DC01 has passed the test KnowsOfRoleHolders

Start testing: MachineAccount

. 011-DC01 has passed the test MachineAccount

Start testing: NCSecDesc

. 011-DC01 has passed the test NCSecDesc

Start testing: NetLogons

. 011-DC01 has passed the test NetLogons

Start testing: ObjectsReplicated

. 011-DC01 has passed the test ObjectsReplicated

Start testing: Replications

. 011-DC01 has passed the test Replications

Start testing: RidManager

. 011-DC01 has passed the test RidManager

Start testing: Services

. 011-DC01 has passed the test Services

Start testing: SystemLog

. 011-DC01 has passed the test SystemLog

Start testing: VerifyReferences

. 011-DC01 has passed the test VerifyReferences

ForestDnsZones

Run partition tests on the

Start testing: CheckSDRefDom

. ForestDnsZones has passed the test CheckSDRefDom