Domain Controller 1
First I'll be renaming my server as shown below.
Its important to set a static IP for our Domain Controller.
Next, I'll be adding the active directory domain services role on to the server.
Once the active directory domain services is done installing, there'll be a prompt asking to promote the server to a Domain Controller. Let's go ahead and do that.
After a restart the domain will be populated as shown bellow. If you see something like this, you've done it correctly.
Now that we have the Active Directory service up and running, we can set the correct interface which will be handling our DNS Queries.
Set-DnsClientServerAddress -InterfaceIndex 15 -ServerAddress 10.11.12.10
Next, AD Certificate Services can be optionally added to the server for LDAP.
Similar to the case above, a prompt will request to configure the Certificate Services.
Reboot the server for changes to take place!
I'll be adding a couple users into the domain for the lab's purpose.
Go ahead and copy he Administrator account to create the service account.
First = SQL
Last = Service
logon = SQLService
password = [email protected]!
Description = Devs pls take note: password = "[email protected]!"
A service principal name (SPN) is a unique identifier of a service instance. SPNs are used by Kerberos authentication to associate a service instance with a service logon account. Lets go ahead and create that.
setspn -a 4pfsec-DC/SQLService.4pfsec.local:60111 4pfsec\SQLService
Now that we have setup the SPN, lets verify that its up and running as per expectations.
setspn -T 4pfsec.local -Q */*
First, create a folder that you'd like to share out to your network.