Skip to content

jwnfld3/active-directory-network-lab

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
README.md
README.md
 
 

Repository files navigation

Setting Up Active Directory, DHCP, and DNS on Windows Server 2022

Summary

In this lab, Active Directory Domain Services (AD DS), DHCP, and DNS will be set up and configured on a Windows Server 2022 environment. These services are crucial for managing a networked environment, allowing centralized management of users, IP address allocation, and name resolution across a network.

Lab Requirements

  • A physical or virtual machine running Windows Server 2022.
  • Access to Server Manager to install and configure roles.
  • Basic knowledge of networking concepts, including IP addressing, subnets, and DNS.
  • Administrator privileges on the server to perform role installations and configurations.

Who, What, When, Where, Why

Who

  • IT professionals or students seeking to practice setting up essential network services like AD DS, DHCP, and DNS.
  • Network Administrators interested in automating and managing their organization's infrastructure.

What

  • Active Directory Domain Services (AD DS) will be used to create a centralized directory for managing users and computers.
  • DHCP (Dynamic Host Configuration Protocol) will be configured to automatically assign IP addresses to network devices.
  • DNS (Domain Name System) will be set up to allow network devices to resolve domain names to IP addresses.

When

  • This lab is useful when setting up a new Windows Server for an organization or a practice environment.

Where

  • This lab is designed for use in a virtual environment (e.g., Hyper-V, VMware) or a physical server running Windows Server 2022.

Why

  • Setting up Active Directory, DHCP, and DNS is foundational for managing a network of computers and devices in an enterprise environment.
  • These services are integral for network security, resource management, and network stability.

Steps to Complete the Lab

1. Install Active Directory Domain Services (AD DS)

Active Directory Domain Services (AD DS) is a core component of Microsoft’s directory service, which provides centralized management and authentication for resources across a network. AD DS is responsible for storing and organizing information about networked resources such as users, computers, and services, and it facilitates access control and security policies.

Key Features:

  • Centralized Authentication: AD DS provides a central authentication mechanism, where users log in with a single set of credentials to access network resources.
  • Directory Structure: AD DS uses a hierarchical directory structure that includes domains, trees, and forests to organize resources.
  • Group Policies: It allows for centralized management and configuration of operating systems, applications, and users through Group Policy Objects (GPOs).
  • Access Control: It helps define who can access what resources on the network and under what conditions.

Why it matters: AD DS is crucial for environments that require centralized management of users, computers, and other resources. It ensures security, simplifies administrative tasks, and allows for easier scalability as organizations grow.

How it works:

  1. Domain Controllers: Servers running the AD DS role, which store the directory database and provide authentication services.
  2. Replication: AD DS data is replicated across multiple domain controllers to ensure high availability.
  3. Security and Trusts: AD DS supports the implementation of security policies and cross-domain trusts to enable access to resources across different domains.

Step 1: Install AD DS Role

  1. Open Server Manager and click Manage > Add Roles and Features. image image

  2. Choose Role-based or feature-based installation, then select the server and click Next. image image

  3. In the Roles section, check Active Directory Domain Services. Click Next.

image image image image image image

  1. Click Install to install the AD DS role. Wait for the installation to complete. image

Step 2: Promote the Server to Domain Controller

  1. After installation, click the notification flag in Server Manager and select Promote this server to a domain controller. image

  2. Choose Add a new forest, then enter the Root domain name (e.g., example.local). image

  3. Set the Forest functional level and Domain functional level to the appropriate version (e.g., Windows Server 2016 or higher).

  4. Enter a Directory Services Restore Mode (DSRM) password and click Next. image image

  5. Set the NetBIOS domain name.

NetBIOS (Network Basic Input/Output System)

This was widely used in early Windows networks and is still supported for backward compatibility. Some older applications, devices, or systems that haven't transitioned to DNS (Domain Name System) may still rely on NetBIOS names to identify and connect to resources on the network. image image image

  1. Review the DNS options and it was discovered that a DNS server will be installed during the process. image image

  2. Review the configuration and click Install. The server will restart. image

2. Set Up a DHCP Server

Step 1: Install the DHCP Server Role

  1. Open Server Manager and click Manage > Add Roles and Features.

  2. Select Role-based or feature-based installation, choose the server, and click Next. image image image

  3. In the Roles section, check DHCP Server, then click Next. image image image image image

  4. Click Install to install the DHCP role. Wait for the installation to complete. image image

Step 2: Configure the DHCP Server

  1. Open the DHCP Management Console from Server Manager > Tools > DHCP. image

  2. Right-click IPv4 and select New Scope. image image image

  3. Configure the scope by entering a Start IP address, End IP address, Subnet Mask, and any Exclusions for static IPs. image

Be sure to exclude the IP address of the server so there isn't an IP conflict. image

  1. Set the Lease Duration and configure the DHCP Options such as Router and DNS servers.

Large Office/Corporate Network

In a larger network with many devices, such as in an office or enterprise environment, devices are typically more stable and remain connected for long periods of time. In this case, a longer lease duration is ideal.

Recommended Lease Duration: 1 day to 7 days

A longer lease ensures that devices don't need to renew leases too frequently, reducing the workload on the DHCP server. This is especially useful when most devices stay connected for extended periods (e.g., workstations, desktops, etc.).

image image

This is a virtual machine so this will not be required. image image image

  1. Activate the scope and verify clients can obtain IP addresses. image image image image

Step 2: Configure the DNS Server

  1. Open the DNS Management Console from Server Manager > Tools > DNS. image

  2. Right-click Forward Lookup Zones and select New Zone. image image

  3. Select Primary Zone, enter the Zone Name (e.g., example.local), and click Next. image image image image image

Lab Conclusion

At the end of this lab, Active Directory Domain Services (AD DS), DHCP, and DNS will be successfully installed and configured on a Windows Server 2022 machine. These services provide essential network functionality, allowing for centralized management of users, dynamic IP address assignment, and domain name resolution across the network.

Additional Resources

About

This repository provides scripts and configurations for setting up Active Directory (AD), DHCP, and DNS services on Windows Server environments. It simplifies the process of deploying and configuring essential network services, ensuring smooth and secure network operations in enterprise environments.

Topics

dns automation dhcp ad scripting active-directory windows-server network-configuration server-setup it-infrastructure network-services enterprise-networking

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors 1