API tools faq
paste
Advertisement
CHERTS

Installing Active Directory on Windows Server 2012 R2

CHERTS
May 26th, 2016
200
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PowerShell 2.94 KB | None | 0 0
raw download clone embed print report
  1. Installing Active Directory on Windows Server 2012 R2 Russian (AD+DNS+DHCP):
  2.  
  3. step 0 (cmd):
  4.  
  5. tzutil.exe /s "Ekaterinburg Standard Time"
  6. netsh interface ipv4 set address name=Ethernet source=static address=192.168.200.2/24 gateway=192.168.200.1 store=persistent
  7. netsh dns set dnsservers name=Ethernet source=static address=127.0.0.1
  8. netsh interface ip delete arpcache
  9.  
  10. step 1 (powershell):
  11.  
  12. # Disable IPv6
  13. Set-ItemProperty -Path 'HKLM:\System\CurrentControlSet\services\TCPIP6\Parameters' -name "DisabledComponents" -Value 255;
  14. # Enable RDP
  15. Set-ItemProperty -Path 'HKLM:\System\CurrentControlSet\Control\Terminal Server' -name "fDenyTSConnections" -Value 0;
  16. Enable-NetFirewallRule -DisplayGroup "Дистанционное управление рабочим столом";
  17. Set-ItemProperty -Path 'HKLM:\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp' -name "UserAuthentication" -Value 1;
  18. # Rename PC
  19. Rename-Computer -NewName DC1 -Restart -Force
  20.  
  21. step 2 (powershell):
  22.  
  23. Import-Module ServerManager
  24. Import-Module ADDSDeployment
  25. Add-WindowsFeature –Name AD-Domain-Services –IncludeAllSubFeature –IncludeManagementTools
  26. Install-ADDSForest -CreateDnsDelegation:$false -DatabasePath "C:\Windows\NTDS" -DomainMode "Win2012" -DomainName "corp.mycompany.ru" -DomainNetbiosName "CORP" -ForestMode "Win2012" -InstallDns:$true -LogPath "C:\Windows\NTDS" -NoRebootOnCompletion:$false -SysvolPath "C:\Windows\SYSVOL" -Force:$true -SafeModeAdministratorPassword (convertto-securestring "P@ssw0rd" -asplaintext -force)
  27.  
  28. step 3 (powershell):
  29.  
  30. Import-Module ServerManager
  31. # create reverse dns zone
  32. Add-DnsServerPrimaryZone -DynamicUpdate NonsecureAndSecure -NetworkId '192.168.200.0/24' -ReplicationScope Domain
  33. Add-DnsServerResourceRecordPtr -Name "2" -ZoneName "200.168.192.in-addr.arpa" -AgeRecord -PtrDomainName "$env:COMPUTERNAME.corp.mycompany.ru"
  34. # dhcp
  35. Add-WindowsFeature –Name DHCP –IncludeManagementTools
  36. Add-DHCPServerSecurityGroup -ComputerName $env:COMPUTERNAME
  37. Restart-Service dhcpserver
  38. Add-DhcpServerInDC -DnsName $env:COMPUTERNAME -IPAddress 192.168.200.2
  39. $User  = "$env:USERDOMAIN\$env:USERNAME"
  40. $PWord = ConvertTo-SecureString -String "P@ssw0rd" -AsPlainText -Force
  41. $Credential = New-Object -TypeName System.Management.Automation.PSCredential -ArgumentList $User, $PWord
  42. Set-DHCPServerDnsCredential -ComputerName $env:COMPUTERNAME -Credential $Credential
  43. Add-DHCPServerv4Scope -Name Office -StartRange 192.168.200.100 -EndRange 192.168.200.254 -SubnetMask 255.255.255.0 -State Active
  44. Set-DHCPServerv4OptionValue -ComputerName $env:COMPUTERNAME -DnsServer 192.168.200.2 -DnsDomain corp.mycompany.ru -Router 192.168.200.1
  45. Set-DHCPServerv4OptionValue -ComputerName $env:COMPUTERNAME -ScopeId 192.168.200.0 -DnsServer 192.168.200.2 -DnsDomain corp.mycompany.ru -Router 192.168.200.1
  46. Set-ItemProperty -Path registry::HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ServerManager\Roles\12 -Name ConfigurationState -Value 2
  47. Restart-Computer -Force
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!