Saturday, February 25, 2017

Install and Configure a Windows server 2012 R2 Domain Controller.

Microsoft made many changes in terms of features, and GUI interface on Windows Server 2012 R2.

In this post, we are going to install active directory domain controller in windows server 2012 R2 and the process to prompt the server as a domain controller. I am in the assumption that you already installed Windows 2012 R2 OS initial setup.

Before you begin to keep in mind below things

  •          DCPROMO is gone and NO longer supported method to promote server as a domain controller.
  •          It’s highly recommended you assign static IP address that you indeed to promote as a domain controller.

There are two process steps involved to promote any member server as a domain controller in windows server 2012 R2.
  •          Adding the ADDC Role.
  •          Promoting a server as a domain controller.

The Process step 1: - Adding the ADDC Role.

After your initial windows installation, your system dashboard will be similar to the below. To get started creating a new domain controller, select “Add roles and features” option.

Before you begin, read some of the important tasks, whether you already completed or not, if it’s not completed, please go back and complete it and “Next”

Windows server 2012 separated Roles and features apart from “Remote Desktop services”. Select “Role based or feature based installation” and Click “Next”

Select a server from the server pool and click “Next”

In Server Role section, Select “Active Directory Domain services” and it will prompt you, what are the roles will be installed in windows server 2012.

In feature section, all required features required for domain controller will be selected by default automatically, please if you need any further features as part of the installation, If NO, click “Next”

In confirmation section, review the configuration settings that you have been selected so far to install on windows server 2012 and click “Install”.

The installation will take ~2min to complete.

Now the role has been installed successfully. Select “Promote this server to a domain controller”

The Process step 2: - Promoting a server as a domain controller.

You have multiple options in Deployment section, before you select the options to ensure we understand it correctly.

  •         Add a domain controller to an existing domain – This option will help you to configure member server as an additional domain controller in the existing AD domain.
  •          Add a new domain to an existing forest – This option will help you to create an additional child domain in an existing AD forest.
  •          Add a new forest – This option will help you to create a new forest (green field environment).

In my lab environment, I am promoting my first domain controller, so I am selecting “Add a new forest” option. Specify Root domain name “” and click “Next”

You might need to select another option which is appropriate for your environment.

In Domain Controller section, select “Forest and Domain functional level” and “Domain Name System (DNS)” as an additional role of the domain controller. You can see on the domain controller page also asking to update “Directory Service Restore Mode (DSRM) password which helps you to recover domain controller from disaster recovery and some metadata cleanup. Specify strong security password and store the passport in a safe place and Click “Next”

The System will automatically check on the environment either same NetBIOS name exist if NOT, it will show as your domain name that you specified earlier, Click Next.

 In Path section, System by default automatically places the Active Directory Database (NTDS.dit), Logs and SYSVOL folders in Windows System drive and it’s recommended to have in the default folder, however, you can change it to non-system drive folder and Click “Next”

Review the configuration details and “Click Install”

Track your progress and once installation is completed, please ensure you reboot the system.

That's it. You promoted Windows Server 2012 R2 as a domain controller.

Thanks visiting my page. Keep watch for the further update.