Comment on page
Domain Controller 1

Most Secure Password =
P@ssw0rd
First I'll be renaming my server as shown below.

Its important to set a static IP for our Domain Controller.


Next, I'll be adding the active directory domain services role on to the server.







Once the active directory domain services is done installing, there'll be a prompt asking to promote the server to a Domain Controller. Let's go ahead and do that.









After a restart the domain will be populated as shown bellow. If you see something like this, you've done it correctly.


Now that we have the Active Directory service up and running, we can set the correct interface which will be handling our DNS Queries.
Set-DnsClientServerAddress -InterfaceIndex 15 -ServerAddress 10.11.12.10

Next, AD Certificate Services can be optionally added to the server for LDAP.



Hit install
Similar to the case above, a prompt will request to configure the Certificate Services.




Hit configure

Reboot the server for changes to take place!
I'll be adding a couple users into the domain for the lab's purpose.

First = John
Last = Hammond
logon = john
password = P@ssw0rd

First = Heath
Last = Adams
logon = heath
password = P@ssw0rd

Go ahead and copy he Administrator account to create the service account.
First = SQL
Last = Service
logon = SQLService
password = MiP@ssw0rd!
Description = Devs pls take note: password = "MiP@ssw0rd!"


A service principal name (SPN) is a unique identifier of a service instance. SPNs are used by Kerberos authentication to associate a service instance with a service logon account. Lets go ahead and create that.
setspn -a 4pfsec-DC/SQLService.4pfsec.local:60111 4pfsec\SQLService

Now that we have setup the SPN, lets verify that its up and running as per expectations.
setspn -T 4pfsec.local -Q */*

First, create a folder that you'd like to share out to your network.
important





Hit create