1. 1 | P a g e R a t a n M o h a p a t r a
Server-410 taught by Jawad Safari
Assignment-1
Aug 30 2015
Submitted by Ratan Mohapatra
Scope of the Assignment: GPO
Platform: Windows server 2012 R2 Data Center, Windows 8.1 Enterprise created as Child
VMs on parent installations
3. 3 | P a g e R a t a n M o h a p a t r a
Step-1: install Active Directory on Server
1. Note the name of AD DS: Get-WindowsFeatures
2. Install AD Domain service: Install-WindowsFeature AD-Domain-Service
I embedded the above command to my script. You can combine the steps 1 and 2 to Get-
WindowsFeature AD-Domain-Services | Install-WindowsFeature
Done:
Checked on the GUI:
3. Pre-requisite Check- a new feature of AD DS 2012 domain configuration. It will alert with suggested
repair options, inform abut new security changes that will be implemented on the server. This is a part of
the DC installation. Test-ADDSForestInstallation
I used ratan.edu as the domain and a password Pa$$w0rd
4. 4 | P a g e R a t a n M o h a p a t r a
Active Directory Installation:
1. Add Role
2. Promote As Domain Controller (dcpromo, although the old program is now deprecated). It is
shown by the flag on the server manager for GUI based DC promotion
3. Create an AD DS Forest Root Domain
I liked this compilation on the Technet.Microsoft.com. Start with the Select Server from the top-left. I
did the installation both by GUI and then by power shell by reverting the VM.
Go to step 2
5. 5 | P a g e R a t a n M o h a p a t r a
Installing & Configuring AD-DS using Power Shell
BG Research:
You can get all the options available in the Server manager by exporting the aliases and cmdlets:
Get-Command –module ServerManager | ft –wrap –autosize (auto also works)
Roles are added by the Install-WindowsFeature cmdlet, where the role -name is the argument, e.g.,
AD-Domain-Services, to the cmdlet. You can add additional arguments such as –
IncludeManagementTools to install the management tools
Install-WindowsFeature -name AD-Domain-Services -IncludeManagementTools
You can see the available roles/features of a particular type by wild card search
Get-windowsFeatures –computerName abc | where displayName –like “*active dir*” | ft –wrap –
autosize
My Installation script:
Install-WindowsFeature AD-Domain-Services -IncludeAllSubFeature -IncludeManagementTools |
Select-Object -ExpandProperty featureResult | ft displayName,Success,restartNeeded -AutoSize
6. 6 | P a g e R a t a n M o h a p a t r a
Using My PowerShell Script to Install A D Domain Services and configure it
Installing AD DS Role:
Install-WindowsFeature AD-Domain-Services -IncludeAllSubFeature -IncludeManagementTools | `
Select-Object -ExpandProperty featureResult | ft displayName,Success,restartNeeded –AutoSize
7. 7 | P a g e R a t a n M o h a p a t r a
Configure AD DS to create a Forest and Domain (ratan.edu, NBios: ratan)
8. 8 | P a g e R a t a n M o h a p a t r a
After Restart:
summary: DNS ZOnes:
9. 9 | P a g e R a t a n M o h a p a t r a
Configure DNS Reverse: create new
10. 10 | P a g e R a t a n M o h a p a t r a
Add the Windows 8 computer to the domain
Check Connectivity:
Auto Restart computer
11. 11 | P a g e R a t a n M o h a p a t r a
Created 2 users on DC1
12. 12 | P a g e R a t a n M o h a p a t r a
Create a New GP Object using GPMC:
1. Control panel blocked on clients (User ConfAdmin TemplatesControlPanel
User gets error when tries to access Control Panel:
13. 13 | P a g e R a t a n M o h a p a t r a
2. Map Shared Folders on network: User Configuration Preferences Windows Settings Drive Map
14. 14 | P a g e R a t a n M o h a p a t r a
Shared folders show on user accounts:
3. Blocl Production Department to access removable storage media
