Previous lecture

• Network Overview
• Windows Server Overview
• Installing Windows Server
• Understanding Server Core
• A word on Nano Server
• Post Installation Configuration
• Introduction to PowerShell
CHAPTER
Introduction to AD DS
2
Lecture Outline

• Network Architecture Overview

• Intro to Active Directory Domain Services
• Understanding Server Roles & Features
• Installing Active Directory Domain Services
• Introduction to Domain Controllers
Network Architecture Overview
Domain
A client/server network is the best example of a domain where a dedicated server is
used to provide services.
• Centralized database
• Centralized management of resources
• Enhanced security
Workgroup
A peer-to-peer network is the best example of a workgroup where computers share
resources without using a dedicated server.
• Distributed database
• Decentralized management of resources
• Weak security
Domain Controllers (DC)

• Server that is configured to store a copy of AD DS directory database (NTDS.DIT)

and a copy of system volume (SYSVOL) folder
• All DC except RODC stores read/write copy of both NTDS.DIT and SYSVOL folder.
• NTDS.DIT = Database file
• SYSVOL folder = contains all the template settings for GPOs
• We can use AD DS replication service to synchronize changes and updates
between the DC in the domain
• DC hosts several other AD related services, including Kerberos service, Key
Distribution Center (KDC)
Server Roles & Features

Installation of each services on windows server require adding of some roles and
features
• Server Roles:
Are software programs which are installed and configured on server to perform a
specific function Ex: AD DS, DNS, DHCP, WDS, IIS, Print.
• Server Features:
Are software programs which support functionality of one / more than one roles.
Ex: Group Policy Management (Tools), PowerShell.
So you can think of Roles as major functions of the server and Features as smaller add-on
packages.
Active Directory domain server

• Directory: is a logical container or folder, that stores information about objects

(Users, Computers, Shared folders, OUs)

• Active directory: is a centralized security database which store information of

network users, groups, organizational units, domain controllers, client machines and
all other objects that can be hide inside a domain.
Requirement of Advice directory

• Requirements for Active Directory installation

• Server OS (2000, 2003, 2008, 2008 R2, 2012, 2012 R2, 2016, 2019)
• Machine must be on network
• Static IP: assigned by Administrator
• At least one NTFS drive
• 2 GB space
• DNS (Domain Name System)
Adding the Active Directory Domain Services Role

AD DS is a role in win server 2016 that lets system administrators to manage and
store network's information. Adding the AD DS role is a two step process:
1. Step: Installation of server roles and features for Active Directory
2. Step: Promoting to a Domain Controller
To add AD DS role in win server 2016 complete the following requirements.
NTDS: used to store active directory database
Sysvol: used to stores the server copy of the domain's public files
Domain Controllers
Since the prerequisites are met, the server will restart to complete promoting it self
as a domain controller.
A domain controller (DC) is a centralized directory database server that stores user
account and security information for one domain and is responsible for securely
authenticating requests for accessing resources in your organization's domain.
Domain Controllers
Domain Controllers

Primary Domain Controller (PDC) Backup Domain Controllers (BDC)

Exp: DC Exp: ADC,RODC
Any Question ?
m.shoaibnoori@gmail.com
Summary

• Network Architecture Overview

• Intro to Active Directory Domain Services
• Understanding Server Roles & Features
• Installing Active Directory Domain Services
• Introduction to Domain Controllers