• Sales: 1-800-961-2888
  • Support: 1-800-961-4454

Feedback

Let us know what you think of our Knowledge Center!

Open Cloud Community

Learn about Rackspace products, ask questions, and share your knowledge in our Open Cloud Community.

Installing Active Directory on Windows Server 2008 R2 Enterprise 64-bit

  • Article ID: 356
  • Last updated on January 11, 2013
  • Authored by: Rackspace Support
  • (28 Comments)

Contents

Installing Active Directory on Windows Server 2008 R2 Enterprise 64-bit

From The Rackspace Cloud -- Cloud Servers Knowledge Base

This article will address how to prepare and install Active Directory Domain Services (AD) on Windows Server 2008 R2 Enterprise 64-bit (W2K8).

This article is not intended for adding a Domain Controller (DC) to an already existing Active Directory Forest Infrastructure.

Preparation for Active Directory

Installing Active Directory Domain Services on a Rackspace Cloud Server is a relatively easy process. There are a few requirements that must be present first to ensure a smooth installation however.

1. Have your domain name selected along with the Domain Administrator Password that you wish to use.
  • Note- Though it is not a requirement, It is recommended you use a multiple name format for you domain name. Example would be, domainName.com or domainName.local rather than simply domainName.
2. A properly configured and available DNS server. This can be installed locally on the DC, and will be the case with this installation scenario.
  • W2K8 can properly install and configure DNS during the AD installation if it knows that DNS is to be local.
  • This is accomplished by having the Private network adapter’s Preferred DNS server address point to the already assigned IP address of the same Private network adapter.
To do this, select View Network Connections within the Server Summary of Server Manager.

2K8_64R2_ADDS.jpg

 

Right click on the Private adapter and select Properties. Or Double click the Private adapter and select Properties.

2K8_64R2_ADDS(1).jpg

 

Double click Internet Protocal Version 4, or select it and click Properties.

2K8_64R2_ADDS(7).jpg

 

Now copy your assigned IP address: displayed in the top box into the Preferred DNS server: box and click “OK”.

2K8_64R2_ADDS(2).jpg

 

Now click OK again for the private Properties and close the Network Connection window.

 

3. The last step for prepping W2K8 for AD is adding the proper Server Role.
  • New to W2K8 is the ability to configure the server to perform specific roles.. The “Active Directory Domain Services” Role will be added. This only installs the framework for W2K8 to become a DC and run AD. It does not promote the server to DC or install AD.
To add the “Active Directory Domain Services” Role click on the Role Directory within Server Manager and select Add Roles in the Roles Summary.

2K8_64R2_ADDS(3).jpg

 

Click Next at the “Before You Begin” section.
Now simply check mark Active Directory Domain Services and click “Next” twice, “Install” and finally “Close” when complete.

2K8_64R2_ADDS(4).jpg2K8_64R2_ADDS(5).jpg2K8_64R2_ADDS(6).jpg

Installation of Active Directory Domain Services (DCPROMO)

Now that the Server has been prepared the installation of AD we can proceed. You now have three different ways we can begin the installation.

1. Within Server Manager, if you expand the Roles directory you will see the Active Directory Domain Services directory. Select that and you will find in the Summary “Run the Active Directory Domain Services Installation Wizard (dcpromo.exe)” Simply click that to begin the installation.

2K8_64R2_ADDS(8).jpg

 

2. The comandline equivilant to Active Directory Domain Services Installation Wizard is - Servermanagercmd.exe –I ADDS-Domain-Controller
3. The last and probably the most recognized method is typing DCPROMO.exe at the command prompt.

2K8_64R2_ADDS(9).jpg

 

Whichever way you choose, You should get to this point. Simply click Next. You do not check advanced mode.

2K8_64R2_ADDS(10).jpg

 

Click Next again.

2K8_64R2_ADDS(11).jpg

 

Now select “Create a new domain in a new forest” and click Next.

2K8_64R2_ADDS(12).jpg

 

Now enter the domain name you have chosen.

2K8_64R2_ADDS(13).jpg

 

After the installation verifies that the NetBIOS Name, you will choose the Forest function level. I chose 2008 R2. After selecting click Next.

2K8_64R2_ADDS(14).jpg

 

It will examine and verify you DNS setting. DNS server should already be checked. Now click Next.

2K8_64R2_ADDS(15).jpg

 

You will now be prompted with the following message. This is OK. Just click Yes.

2K8_64R2_ADDS(16).jpg

 

Click Next Again.

2K8_64R2_ADDS(17).jpg

 

Now enter your Domain Administrator Password that you chose. This is not your Admin Password that emailed to you during the creation of you Server, unless you want to use it. It is your decision.

2K8_64R2_ADDS(18).jpg

 

Click Next.

2K8_64R2_ADDS(19).jpg

 

The installation will now complete. You can check the reboot on completion if you like.

2K8_64R2_ADDS(20).jpg

 

If not, you will need to click Finish here. Then restart your server.

2K8_64R2_ADDS(21).jpg

 

After a few minutes, reconnect to your server via the Console in your Control Panel or RDP.
To log in, you will need to select “Switch User”, then Other User. Type in your full domain name you picked followed by a back slash and Administrator for user. Then enter the password that was emailed to you when you first built the server. If you had already changed your password for the local admin account to this server before your began the install for AD, use that password.

2K8_64R2_ADDS(22).jpg

 

!!!Congratulations!!! You have installed an Active Directory Domain Controller.

 



© 2011-2013 Rackspace US, Inc.

Except where otherwise noted, content on this site is licensed under a Creative Commons Attribution-NonCommercial-NoDerivs 3.0 Unported License


See license specifics and DISCLAIMER

28 Comments

This is a great article, very easy to follow with clear instructions and easily allowed me to install on AD and play about with the server as a DC.
By Craig Cartwright on Jul. 30, 2012

what is the reason for Active Directory Domain Services is installed before dcpromo
By Rajiv on Jul. 30, 2012

Hello Rajiv,
The reason for the Role installation before the DCPromo is because the Role simply allows the management of the domain you are about to setup. DCPromo actually promotes the server to a propoer domain controller, and creates the requested domain. Hope this helps.
By Aaron Scheel on Jan. 8, 2013

Hello Aaron,

Thank you for providing very useful information and clear explanation. :-)
By Deepak on Apr. 17, 2013

And when it doesn't work and the rackspace chat rep announces that "...as far as support goes for AD we (rackspace) dont "fully" support it."
By sysadmin on Aug. 9, 2012

I was getting an error while adding the AD DS role every time I tried to follow these directions. I checked and the Remote Registry service (disabled by default) needed to be start/set to automatic, before the role installation would work.
By Ian C on Nov. 16, 2012

Thanks Ian. We'll look into that and probably update the article with a note in the preparation steps.
By jered.heeschen on Nov. 19, 2012

can this guide be used for AD installation??
By Mah on Dec. 22, 2012

Yes. This guide's intent is to help setup an Active Directory (AD) domain controller.
By Aaron Scheel on Jan. 8, 2013

I do not have any Private adapters in my network connections. What should I do?
By mah on Dec. 22, 2012

Typically, if the private adapter is missing on your Rackspace Cloud server, it is due to the Private network being de-selected upon creation of the cloud server. This requires you to re-create the Cloud server and make certain that both the Public and the Private network adapters are selected (at a minimum).
By Aaron Scheel on Jan. 8, 2013

Hi there,

I have a domain, when I change name server to hostgator.com and create email in cpanel like info@calls.co.nz, Im able to send and receive emails at info@calls.co.nz with hostgator

But When I change calls.co.nz name server to my windows 2008 server, I'm not able to receive emails.

Is there anyway to create info@calls.co.nz in my server so I could be able to recieve and send emails.

Regards

Safi
By Safi on Jan. 15, 2013

I'd start with making sure you have the "MX" record type set for calls.co.nz, and that the value points to the new server.

Apart from that, are you getting any errors when you try to send mail to the domain on the new server? Do the emails you send get bounced back to the sender?
By jered.heeschen on Jan. 15, 2013

I see this article states these instructions are not for adding a domain controller to an existing forest. I've searched, but can't find instructions on how to do this. Any ideas?

Thanks.
By Eric on Jan. 16, 2013

To add a domain controller to an existing forest, there are a few variations. I would recommend reviewing the following Microsoft technet article for reference.

http://technet.microsoft.com/en-us/library/cc753720%28v=ws.10%29.aspx

It is very similar in nature to how the domain is initially created in the guide on this page, but with some key differences that this technet article should help to delineate.

Thank you,
Aaron Scheel
By Aaron Scheel on Jan. 16, 2013

Hai

i installed Active directory and domain controller, but after restarting the system, it is asking for current password and new password. i try with my old password but its not working,
my domainname is ''BRBahrain'' and its shows BRBAHRAIN\Administrator.
but the password is not accepting the old password.

can anyone helpme.
By sujith on Jan. 21, 2013

There are third party apps that you can use on a dedicated system, or a Managed Virtualization system (such as Locksmith, or a BootPE image with an equivalent tool on it).

However, if this is for a public cloud server, you will have to re-kick (re-load the OS) the server and recreate the login.

During the setup of Active Directory on this server, it should have prompted you to create a Domain Administrator password if this was a stand-alone Domain Controller. If you were joining this Domain Controller to an existing forest or domain, you could use the Admininstrator's login from the existing domain, or existing parent domain in the forest in order to get into the server.

Otherwise, again, it will require a rekick. Hope this helps.

Thanks,
Aaron Scheel
By Aaron Scheel on Jan. 21, 2013

I try to install windows 2008 server and I went through the installation of Active Directory Users and Computers program with no problem until I created a user account for an individual person for the last stage of type password (I did type password including an upper case, lower case and numeric at least 8 characters). As soon as I hit "enter" the popup warning said: "Windows cannot set the password for Mike Smith (an example for this user name) because: The password does not meet the password policy requirement. Check the minimum password length, password complexity and password history requirement"
Please any person can help me to go through this problem.
I kindly said "thank a lot"
By Minh Mai on Mar. 1, 2013

You'll need to either make the password more complex or longer (to meet the current requirements) or change the server's password policy. You can find directions for getting to the password policy for the domain here:

http://technet.microsoft.com/en-us/library/cc748850(WS.10).aspx

Once at the appropriate password policy screen you can adjust or disable the requirements.
By jered.heeschen on Mar. 2, 2013

helo my friends
i decide to install dns & active directory with 50 users on windows server 2008 and want to purchase needed hardware. users must authenticate on active directory server. what are hardware configurations for this task?
By younes on Mar. 7, 2013

Great stuff,
By Ray on Mar. 11, 2013

sir, this guide so easy tutorial about how to configure. there are any configure about it, example : about how to configure use email exchange between DC
By marco on Mar. 21, 2013

I'm afraid we don't have any tutorials for that at this time. You might try asking in our forums; someone there may have experience with Exchange and can help out.

https://community.rackspace.com/
By jered.heeschen on Mar. 21, 2013

i installed MSI to the systems added to AD Domain, able to install, but every time when i restart the systems, trying to install the same software again and again.
By Sandya on Apr. 10, 2013

To clarify, is this happening when you're trying to install a particular MSI file to a server in your domain, or have you tried installing more than one piece of software to your servers with the same results?
By jered.heeschen on Apr. 10, 2013


Hi,

As i chek my systems i.e Windows server 2008 enterprice only display local area connection. How can i add Private network adapter into it?

if you have any steps, Let me know.

Thanks,
psecure.
By psecure on May. 13, 2013

Please see http://www.rackspace.com/knowledge_center/comment/159675#comment-159675 for the response to your question. In the interest of keeping the answer consistent.

This is, of course, assuming that you are referring to a server in Public Cloud. If you are referring to any other type of system, please elaborate.
By Aaron Scheel on May. 13, 2013

Great 'How-to'. But after successfully installing and logging into Active Directory, I am unable to join local Windows users and computers to the Active Directory. One normally does this thru the Name property of Your guidance would be appreciated.
By Hanief Edwards on May. 15, 2013

Add new comment