19 September, 2012

Promoting a Domain Controller on Windows Server 2012

Dear All, With due Respect I wish to Inform the Sudden Demise of Our Friend "DCPROMO".....

Yes... That Is True.... You heard it right... DCPROMO Is no more with us.. I mean.. No more in Windows Server 2012

Remember... How many times you ran that sweet command... And now... It has become a history... R.I.P "DCPROMO"

Starting Windows Server 2012, the way to promote a server to a domain controller has been changed.. Let`s See How...

The First Window that you will get by default will be that of "Server Manager"

To know more about Server Manager, Please read the following post "The Server Manager - Windows Server 2012 (http://www.adshotgyan.com/2012/09/the-server-manager-windows-server-2012.html)"

 
 
Its not only DCPROMO which is no longer with us... There is one more thing which we gonna miss... Our dear "Start"button .... Yes... You again heard it right.....
 
Read the following post to believe me: "The "Start" Has To End - Windows Server 2012 (http://www.adshotgyan.com/2012/09/the-start-has-to-end-windows-server-2012.html)"
 
So here is our new Start....To get this page, just press the windows key on the main page (Server Manager) and you will get this new start page


Searching for Start or Run...??? Nah.... Just start writing what ever you want to search... DCPROMO
I know you don't trust me... Fine... Find it then.... Yeah... You are able to find it.. Run it then


See.. I told You... Its clearly saying that AD DS Installation Wizard is relocated in Server Manager... So without wasting any more time in proving that DCPROMO is gone, lets go to Server Manager


Server Manager.... Add Roles and Features





Now this page is interesting... As I said in my previous post that Microsoft has designed Windows Server 2012 keeping in mind Cloud Computing... And this is one fine example after Storage Pool is this page...

So let`s assume that you have to deploy a domain controller on another location. What all options do you have?

1. To go on to that site and install active directory (See I didn't said run dcpromo :))
2. To get that server here and then install active directory

In the world of Cloud Computing, We are moving towards Server Virtualization. So what if I make a Virtual Machine here on my own machine, Install Active Directory on it and then send that Virtual Machine to the Remote Location (Why to send it... Upload the VHD on a Virtualized SAN... Yes Friends, That's the Future of IT)


Select the Active Directory Domain Services Role


And this will add the required features Automatically...

I still remember those days when we use to install some components and then it would pop up with a message stating that it first require some other roles to be installed and then installing those components would have required a disc.. Ahh... Microsoft has made things so easy and on the fly...



And these are the features that are required and will be installed automatically with AD DS Role






Another good point to note here... If I would have been installing AD DS Role on a Remote Computer, then I don't have to be there to reboot the server, this screen gave me an option to reboot the server automatically after the role has been Installed



This page gives you an option of Exporting the Configuration File. The Configuration File will consist of all the settings that you selected during the course of the wizard


The Main Role that was Selected "Active Directory Domain Services"


The Name of the Server


The Component/Features that the Wizard will Automatically Install (Depending upon the Role Selected)


RSAT will also be Installed


Active Directory Administrative Center to be Installed as well


PowerShell






The Final Configuration Page


On the same page, you also have an option to select an "Alternative Path" for the source files


And here we go...........





Once the Installation is done, and you close the wizard, don't expect anything to happen automatically... Neither try to search for dcpromo again.... On the Server Manager Page, You will now notice a Yellow Exclamation Mark (As if Exclamation Marks are of different colors... Its always Yellow)

Click on that Notification Icon with the Exclamation Mark (Yellow Of course)


Got the option "Promote the Server to a Domain Controller"?


First, Let`s go to the Task Details


So there is something known as "Post Deployment Configuration"... And the Action is "Promote the Server as a Domain Controller"


Select the Link either from here "Task Details" or directly from the Notification" Window which we clicked earlier


And the Configuration Window now Launches


As said, Select the Link either from the "Task Details" or directly from this Notification" Window


The DCPROMO has gone... But has left the same old options....

Deployment Options

- Add a domain controller to an existing domain


- Add a new domain to an existing domain


- Add a new forest


Here, we will choose the option "Add a New Forest"

Specify the name of the new forest


Forest and Domain Functional Level


Forest Functional Levels

- Windows Sever 2003
- Windows Sever 2008
- Windows Sever 2008 R2
- Windows Sever 2012

(Was wondering why did they left Windows 2000)


Domain Functional Levels

- Windows Sever 2003
- Windows Sever 2008
- Windows Sever 2008 R2
- Windows Sever 2012


Password for the DSRM Mode


I keep on saying "remember"... coz that helps a lot in co-relating the new server with the old one

In Windows Server 2008, While running DCPROMO, during the installation of DNS, we use to get a small pop-up for Failed to get DNS delegation... That was because, by default when you install AD and DNS, the server tries to create a delegation for the zone above your domain name.. Like you are creating a domain lab.com, now the server will automatically try to connect to the zone (com) to create a delegation for your domain (lab) which it will fail (but of course) as you will be ab administrator of your own domain but do are NOT an administrator for the "com" domain.. Simple

So In Windows Server 2012, the same thing happens again but is displayed in a slightly different way
Now, Instead of the pop-up, you have this line and a small link "show more"


Click on "show more" and you get the same old pop-up which we use to get in Windows Server 2008


See the option "Create DNS Delegation" is Greyed Out



The NetBIOS Name

As a test, I tried changing the NetBIOS Name and it allowed me...




Coming back... I changed it back to the original name (SOURCE)


Path for NTDS and SYSVOL


Final Configuration Page....



View Script ????


Great... The PowerShell Script... As I said Earlier, Just like Exchange 2007 (In which everything you do has an associated PowerShell Command getting displayed at the end), In Windows Server 2012 also the same thing happens... At the end of this deployment, it showed you the powershell script that will be executed and the same script you can use to promote another server





Another very cool feature... "Prerequisite Check"

Prerequisite Checker is there in Exchange 2007 and now has been incorporated in Windows Server 2012. This small but very efficient tool helps you to determine if there is feature/component which is missing before it actually starts installing Active Directory


All Checks Passed...


And now the configuration of Active Directory Starts... I will not be explaining all the forth coming slides as they are self explanatory.. They are the same which use to be in DCPROMO like Replication Domain Partition, Replication Schema Partition, Configuring DNS, LSA etc....










Done and About to Reboot




The New Login Screen



The Server Manager showing the Domain Information


Confirming if the Server is a Domain Controller (AD DS Role Installation)


Active Directory Users and Computers Snap-In showing DC1 as a Domain Controller

 
 
And the New Start Page.....