Endpoint 1

These steps can be replicated to create other endpoints.

Rename PC

The first thing is to rename the pc for your network. Do restart once renamed.

Disabling Windows Security

Virus & Threat Protection

Registry

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender

DisableAntiSpyware => 1
DisableRealtimeMonitoring => 1
DisableRoutinelyTakingAction => 1
DisableAntiVirus => 1
DisableSpecialRunningModes => 1
ServiceKeepAlive => 0

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Signature Updates

ForceUpdateFromMU => 0

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection

DisableRealtimeMonitoring => 1
DisableOnAccessProtection => 1
DisableBehaviorMonitoring => 1
DisableScanOnRealtimeEnable => 1

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Spynet

DisableBlockAtFirstSeen => 1

Join the Domain

Now that our client is prepped, its time to join the Domain.

Changing DNS Server

To be able to join the domain, we need to set the AD server as our DNS server.

Check Connectivity

PS C:\Users\ladmin> ping dc1.4pfsec.local

Join Domain

Search for Access work or school and hit connect.

Now we want to select Join this device to a local Active Directory domain.

Now enter the domain name.

4pfsec.local

There should be a pop up asking for credentials as shown below and hit skip.

Hit skip upon seeing the following prompt.

Once done, hit restart.

Upon seeing the login screen, hit other user and you should see that now you're signing into the domain 4pfsec.

Verify Domain Join

Now that we have successfully joined the domain, we can verify this over on the Server. Head to Tools > Active Directory Users and Computers on Server Manager.

Next, hit Computers and you should be able to see your newly domain joined computer as shown below.

Set up Local Administrators

First, login to the endpoint using the Domain Admin account.

Next, open up computer management.

Under Local Users and Groups, head to Groups and select Administrators.

Now hit add, enter a partial name and hit check names. It should auto complete if the user is detected. Hit ok after the user autocompletes.

You can opt to add more administrators into your lab for various reasons.

Enable Network Discovery (SMB/Print Service)

Head over to Control Panel\Network and Internet\Network and Sharing Center\Advanced sharing settings on your control panel and turn Network Discovery and File and Printer Sharing on as shown below.