DNS – DNS is a system that translates domain names into IP addresses. This is necessary because computers only make use of IP addresses yet we use only human readable names since the names are easier to remember than IP addresses. Without this DNS resolution, the internet would be a very inconvenient place.
Important Considerations
1. Register a Domain Name with Domain Register
2. Try to get a Static IP with Internet Service Provider. Check Domain Name ON request Option is available with them.
3. Make a Network Infrastructure Diagram and prepare a Document about your company and submit this to your ISP, include your Domain Name, Name of the server etc.
4. They will provide you with the static IP, subnet mask, default gateway, and Primary DNS server for your domain. They will give you a suggestion to create a DNS server for your company, or they will handle the internet queries for your domain.
5. If they are handling the DNS server, you have to create a forwarder in your internal DNS server.
In order to setup a functional Domain, review the step by step procedures in My Blog
Notes:
Most of system admin will configure the DNS server while configuring the Domain Controller. We can also setup DNS before promoting a Domain Controller
Critical procedures are there, in which if you fail your DNS server won’t work for you
If you plan to setup a DNS server before promoting a server to be a Domain Controller, check with this
Step 1: Configure the computer’s suffix – My Computer ->Properties->Computer Name->change->More->enter the NetBIOS name in the DNS suffix
Step 2: Configure the Computers TCP/IP setting – enter a static IP, subnet mask and gateway and in the DNS enter the system IP
Step 3: Finally configure the DNS Zone
Step by step procedure to configure DNS server before configuring Domain Controller
Assume that DNS is already installed in this server – Add or remove windows component and DNS service to install
1. Open Manage your server, if DNS is installed it will show you an option to manage this DNS server. Click Manage this DNS server option
2. DNS Management console will open; you see two zones under your computer name: Forward Lookup Zone and Reverse Lookup Zone. we are going to configure forward look up zone
3. Right click Forward Lookup Zones and choose to add a new zone. Click Next
4. The new forward lookup zone must be a primary zone so that it can accept dynamic updates. Click Primary, and then click Next.
5. The name of the zone must be the same as the name of the Active Directory domain, or be a logical DNS container for that name. For example, if the Active Directory domain is named “SYZADMIN.COM”, legal zone names are “lab.SYZADMIN.COM”, “syzadmin.com”, or “syzadmin”
.
6. Type the name of the zone, and then click Next
7. Accept the default name for the new zone file. Click Next.
8. To be able to accept dynamic updates to this new zone, click “Allow both non secure and secure dynamic updates”. Click Next
9. Click Finish.
Promoting a server to a domain controller is the process of installing Active Directory Services on that server
An administrator has the following options when promoting a server to a domain controller:
Before Promoting a domain controller make sure u already check the important consideration checklist
1. Go to start -> Select Run ->type DCPROMO
2. On the Active Directory Installation Wizard click on Next
3. Click “Next” on the compatibility window
4. On Next window select the default option of “Domain Controller for a new domain” and click “Next”
5. In this we will create a domain in a new forest, because it is the first DC, so keep that option selected
6. Now we have to think of a name for our domain. If you have a domain like SYZADMIN, you can use it, but it isn’t suggested because computers inside of your domain may not be able to reach the company website. Active directory domains don’t need to be “real” domains like the one above – they can be anything you wish. So I will create “SYZADMIN.COM”
7. Now in order to keep things simple, we will use “SYZADMIN”, which is the default selection, as the NetBIOS name of the domain
8. The next window suggests storing the AD database and log on separate hard disk and you can just leave the default settings
9. The SYSVOL folder is a public share, where things like .MSI software packages can be kept when you will distribute packages and you can just leave the default settings or you can change the path.
11. Here you need to select the permissions for win 2000 or win 2003 server if you have any NT4 select first option otherwise select second option and click next
12. The restore mode password is the single password that all administrators hope to never use, however they should also never forget it because this is the single password that might save a failed server. Click next
13. Now we will see a summary, review and click next
14. Active directory installation process started this can take several minutes. It’s likely that you will be prompted for your Windows Server 2003 CD (for DNS) so have it handy.
15. Active directory Installation finish screen click Finish.
16. It will ask for restart. Click restart now. And Login to the Computer via Domain Account by selecting the option in the login window.
Here we go; we installed and configured the Domain Controller.Note:
You should now make sure your computer can register itself in the new zone. Go to the Command Prompt (CMD) and run “ipconfig /registerdns” (no quotes). Go back to the DNS console, open the new zone and refresh it (F5). Notice that the computer should by now be listed as an A Record in the right pane.
If it’s not there try to reboot (although if it’s not there a reboot won’t do much good). Check the spelling on your zone and compare it to the suffix you created in step 1. Check your IP settings.
Important Considerations
- Have you previously chosen and registered a DNS domain name for use on the Internet?
- Are you going to set up DNS servers on a private network or the Internet?
- Are you going to use DNS to support your use of Active Directory?
1. Register a Domain Name with Domain Register
2. Try to get a Static IP with Internet Service Provider. Check Domain Name ON request Option is available with them.
3. Make a Network Infrastructure Diagram and prepare a Document about your company and submit this to your ISP, include your Domain Name, Name of the server etc.
4. They will provide you with the static IP, subnet mask, default gateway, and Primary DNS server for your domain. They will give you a suggestion to create a DNS server for your company, or they will handle the internet queries for your domain.
5. If they are handling the DNS server, you have to create a forwarder in your internal DNS server.
In order to setup a functional Domain, review the step by step procedures in My Blog
Notes:
Most of system admin will configure the DNS server while configuring the Domain Controller. We can also setup DNS before promoting a Domain Controller
Critical procedures are there, in which if you fail your DNS server won’t work for you
If you plan to setup a DNS server before promoting a server to be a Domain Controller, check with this
Step 1: Configure the computer’s suffix – My Computer ->Properties->Computer Name->change->More->enter the NetBIOS name in the DNS suffix
Step 2: Configure the Computers TCP/IP setting – enter a static IP, subnet mask and gateway and in the DNS enter the system IP
Step 3: Finally configure the DNS Zone
Step by step procedure to configure DNS server before configuring Domain Controller
Assume that DNS is already installed in this server – Add or remove windows component and DNS service to install
1. Open Manage your server, if DNS is installed it will show you an option to manage this DNS server. Click Manage this DNS server option
2. DNS Management console will open; you see two zones under your computer name: Forward Lookup Zone and Reverse Lookup Zone. we are going to configure forward look up zone
3. Right click Forward Lookup Zones and choose to add a new zone. Click Next
4. The new forward lookup zone must be a primary zone so that it can accept dynamic updates. Click Primary, and then click Next.
5. The name of the zone must be the same as the name of the Active Directory domain, or be a logical DNS container for that name. For example, if the Active Directory domain is named “SYZADMIN.COM”, legal zone names are “lab.SYZADMIN.COM”, “syzadmin.com”, or “syzadmin”
.
6. Type the name of the zone, and then click Next
7. Accept the default name for the new zone file. Click Next.
8. To be able to accept dynamic updates to this new zone, click “Allow both non secure and secure dynamic updates”. Click Next
9. Click Finish.
Promoting a server to a domain controller is the process of installing Active Directory Services on that server
An administrator has the following options when promoting a server to a domain controller:
- Installing the first domain controller in a new forest
- Installing the first domain controller in a new domain tree
- Installing the first domain controller in a new child domain
- Installing an additional domain controller in a domain tree
- Removing Active Directory from domain controller
- An NTFS partition with enough free space
- An Administrator’s username and password
- The correct operating system version
- A NIC
- Properly configured TCP/IP (IP address, subnet mask and – optional – default gateway)
- A network connection (to a hub or to another computer via a crossover cable
- An operational DNS server (which can be installed on the DC itself)
- A Domain name that you want to use
- The Windows Server 2003 CD media (or at least the i386 folder)
Before Promoting a domain controller make sure u already check the important consideration checklist
1. Go to start -> Select Run ->type DCPROMO
2. On the Active Directory Installation Wizard click on Next
3. Click “Next” on the compatibility window
4. On Next window select the default option of “Domain Controller for a new domain” and click “Next”
5. In this we will create a domain in a new forest, because it is the first DC, so keep that option selected
6. Now we have to think of a name for our domain. If you have a domain like SYZADMIN, you can use it, but it isn’t suggested because computers inside of your domain may not be able to reach the company website. Active directory domains don’t need to be “real” domains like the one above – they can be anything you wish. So I will create “SYZADMIN.COM”
7. Now in order to keep things simple, we will use “SYZADMIN”, which is the default selection, as the NetBIOS name of the domain
8. The next window suggests storing the AD database and log on separate hard disk and you can just leave the default settings
9. The SYSVOL folder is a public share, where things like .MSI software packages can be kept when you will distribute packages and you can just leave the default settings or you can change the path.
- If your DNS server, zone and/or computer name suffix were not configured correctly you will get the following warning:
- This means the Dcpromo wizard could not contact the DNS server, or it did contact it but could not find a zone with the name of the future domain. You should check your settings.
- You have an option to let Dcpromo do the configuration for you. If you want, Dcpromo can install the DNS service, create the appropriate zone, configure it to accept dynamic updates, and configure the TCP/IP settings for the DNS server IP address.
- To let Dcpromo do the work for you, select “Install and configure the DNS server”.
- Next Screen basically says that you will need a DNS server in order for everything to work the way we want it (i.e., our “SYZADMIN” to be reachable).we will install the DNS server on this machine or if you want you can installed elsewhere select “Install and Configure…” and click next.
11. Here you need to select the permissions for win 2000 or win 2003 server if you have any NT4 select first option otherwise select second option and click next
12. The restore mode password is the single password that all administrators hope to never use, however they should also never forget it because this is the single password that might save a failed server. Click next
13. Now we will see a summary, review and click next
14. Active directory installation process started this can take several minutes. It’s likely that you will be prompted for your Windows Server 2003 CD (for DNS) so have it handy.
15. Active directory Installation finish screen click Finish.
16. It will ask for restart. Click restart now. And Login to the Computer via Domain Account by selecting the option in the login window.Here we go; we installed and configured the Domain Controller.Note:
You should now make sure your computer can register itself in the new zone. Go to the Command Prompt (CMD) and run “ipconfig /registerdns” (no quotes). Go back to the DNS console, open the new zone and refresh it (F5). Notice that the computer should by now be listed as an A Record in the right pane.
If it’s not there try to reboot (although if it’s not there a reboot won’t do much good). Check the spelling on your zone and compare it to the suffix you created in step 1. Check your IP settings.
No comments:
Post a Comment