Platforms · AD Domain Lab · Setting up Active Directory

Setting up Active Directory

Install Active Directory Domain Services (AD DS) and promote Windows Server to a domain controller. Then perform core user-management tasks in ADUC.

Overview

Setting up Active Directory starts with installing the AD DS server role on Windows Server and then promoting the server to a domain controller.

Steps to Setting up Active Directory

1) Add the AD DS Role

In Server Manager, click Add roles and features to launch the wizard.

Server Manager - Add roles and features

Add Roles and Features Wizard

2) Installation Type

Select Role-based or feature-based installation.

Installation type selection

3) Server Selection

Select the local server from the server pool and click Next.

Server selection

4) Choose the Role

Select Active Directory Domain Services (AD DS).

Select AD DS role

5) Add Required Features

Accept the additional features needed for AD DS.

Add required features for AD DS

6) Continue

Click Add Features, then Next.

Features confirmation

7) Install

Install selection

AD DS Installation

1) AD DS Tab → Install

AD DS tab - Install

2) Confirmation → Install

Confirmation step

3) Installation Progress

AD DS installation progress 1

AD DS installation progress 2

4) Promote to Domain Controller

Click Promote this server to a domain controller.

Promote to domain controller

5) Deployment Configuration

Select Add a new forest for this example.

Add a new forest

6) Domain Controller Options

Verify capabilities and set a Directory Services Restore Mode (DSRM) password.

Domain controller options and DSRM password

7) Additional Options

Specify the NetBIOS domain name.

NetBIOS domain name

8) Paths

Paths for AD DS database, logs, and SYSVOL (defaults are fine for lab setups).

Database, logs, and SYSVOL paths

9) Review Options

Review options before install

10) Prerequisites Check

Run the check and then click Install.

Prerequisites check

11) Install & Reboot

The server installs AD DS and restarts automatically.

Installation in progress

Server rebooting

12) Domain Logon Screen

Logon screen shows domain

13) ADUC Available in Tools

Active Directory Users and Computers in Server Manager > Tools

14) Active Directory Console

ADUC console view 1

ADUC console view 2

Creating a New AD User Account

1) New User Wizard

In Active Directory Users and Computers, right-click the Users container (or target OU) → New → User.

New user in ADUC

2) Enter Name Attributes

Enter user attributes

3) Next

New user wizard next

4) Set Password

Set user password

5) Finish

Finish user creation

6) User Visible in OU

New user object in Users container

Resetting a User Account Password

A common IT support task.

1) Locate the User

Locate user object

2) Right-click → Reset Password…

Reset password action

3) Specify New Password

Specify new password

4) Search Tools

Use Find (toolbar icon) to quickly locate accounts in larger environments.

ADUC Find tool

5) Example Search

Search by first name

Unlocking a User Account

Accounts may lock after too many failed logons. For repeated locks, investigate mapped drives, services, or cached credentials.

Unlock Steps

Right-click the user → Properties → Account tab → check Unlock account.

Unlock account in user properties

Summary

This walkthrough installed AD DS, promoted the server to a domain controller, and covered essential ADUC tasks: creating a user, resetting a password, and unlocking an account.

← Back to Home