Active Directory Complete Installation/Tutorial

How to install Active Directory on Windows 2008

How to install Active Directory on Windows 2008 Before you start following this article you must be aware this is simply a lab setup and you need to assign relevant ip address, hostnames & domain names which are relavant to your enviroment / organisation.
I will be using the following:
Hostname=PILOT-DC-01
IP address=192.168.1.200
Subnet Mask=255.255.255.0
Domain name=PILOt.LOCAL
Forest = New
Partition: NTFS ( 60 GB )
The Virtual machine used has been installed as of date when this article was written with a default install of Windows 2008 R2 x64 BIT + all MS critical updates.



Configure IP Address details as required. As this is the only DNS server and the first DC we will point the DNS to itself.





Start Server Manager and select Roles > Add Roles





Click Next  >


Once you select Active Directory Domain Service you will see this dialogue box it is self explanatory. :)

Click ok




Click Next > & move ahead.





Some Useful tips on this page if you would like to reaand than move ahead pelase do so.

Click next >




Click Next  >




once the wizard is complete

Click Close >







There are various ways you can start and compelte the DCPROMO wizard. We choose to install it using the Server Manager indicated in the screenshot below.







Click advanced check box.

Click Next >




Read the text carefull before you move ahead.

Click Next >




Select New Domain in a New Forest.

Click Next >




Decide your FQDN for the new forest root domain. I have chosen to go with the
PILOT.LOCAL.

Click Next >





DCPROMO wizard verifies if this name is already in use on the same VLAN etc....





We have used the default name PILOT as the NETBIOS name, you can change it if you choose too.



Set you FFL right now we have decided to use Windows 2008 R2 as that is the first DC + no other
DC in this domain. We also would like to research and test the new FFL features. Please make your
appropriate choice here as this change is irreversible.


Click Next  >




The wizard will install DNS & configure it for you.

Click Next >




Click Yes >




We currently only have a single partition so we ahve no choice of changing these paths but
please make your partition choice.

Click Next >




Enter your recovery mode password and record it safely.

Click Next >




You can export these settings and also could use the answer file to run the same wizard again
with relevant changes tot he file for any options you want for example: We could ahve done all of
the above using command line and the answer file.

1. A new DC & in a new forest.
2. A Addtional DC in an existing forest.
3. etc..




The wizard applies all the configuration we did earlier.





Click Finish & Reboot.







After reboot we can verify the DNS server has been auto installed and configured by the DCPROMO wizard.



All we need to do now is create the DNS reverse lookup zone as that is done manually.



Click Next  >



Click Next  >



Click Next  >




Define your ip subnet details.

Click Next  >




Click Next  >




Click Finish  >




Now the reverse lookup zoone shows up in DNS.








The domain controller does show up in ADUC.



New SYSVOL & NETLOGON shares are also available & accessible.

For any further troubleshooting or for verification you can run dcdiag.exe
netdiag.exe

log the results into a text file and view the outcome.

I hope you find this useful !!!

WSUS Complete

What is WSUS?

What is WSUS (Windows Server Update Services)?

WSUS or Windows Server Update Services is a free patch management tool available to Windows Server administrators. WSUS allows administrators to authorise/publish and distribute updates within a network.
Windows Server Update Services (WSUS), also called Windows Update Services (WUS), is a free add-on for managing patches and updates to the Microsoft Windows XP, Windows Server 2000, and Windows Server 2003 operating systems.
Aimed mainly at small and medium-sized businesses (SMB), WSUS is intermediate between the simpler Windows Update for individual computer users and the more robust Systems Management Server (SMS) for large enterprises.
WSUS features include:

• The incorporation of bandwidth management for optimum use of network resources
• Automatic download of updates by category
• The ability to target updates to specific computers or sets of computers
• Enhanced reporting capabilities
• Multiple language support.

WSUS is the successor to Software Update Services (SUS).

Why use WSUS within my network?
It is increasingly important for administrators to keep their networks safe and secure. Instead of each workstation manually connecting to Microsoft Update, testing updates and then deploying updates using traditional methods, administrators can use WSUS to download updates centrally to an internal server. Once updates are authorised in WSUS, they’re also deployed internally and reporting tools keep administrators informed of patch progress. This is a very efficient way of working, allowing administrators full control of which updates are deployed to workstations.
What are the minimum requirements for WSUS?
For WSUS 3.0, Windows Server 2003 SP1 or later and Windows Server 2008 are supported. For Windows 2000 Server, you must download WSUS 2.0 SP1. For detailed hardware requirements, please click here
Where can I download WSUS?
WSUS 3.0 SP2 or WSUS 2.0 SP1
What can be patched with WSUS?
WSUS supports a wide range of operating systems and applications which is constantly updated. However as a reference, Windows 2000 Professional SP3 or later, Microsoft Office XP (2002) or later, Microsoft SQL Server, Exchange Server 2000 or later and Windows Defender are some of the more common platforms supported.
What Classifications are supported?
Critical Updates, Definition Updates, Drivers, Feature Packs, Security Updates, Service Packs, Tools, Update Rollups and Updates are available to choose from.
How do I redirect my workstations to communicate with WSUS?
WSUS is compatible with Group Policy so you can easily and efficiently direct your workstations to your WSUS server and disallow end users access to Windows Update. This gives administrators full control what’s deployed to your network.
How can I view reports with WSUS?
You must download and install Microsoft Report Viewer 2005 on the same server you have WSUS installed.
How are updates downloaded?
Automatic Updates uses the Background Intelligent Transfer Service (BITS) to download updates. This is a very efficient technology, using idle bandwidth to silently download updates in the background.
Can I administer WSUS from any computer in my network?
Yes, however several steps are needed for WSUS 3.0 to work. MMC 3.0 (Microsoft Management Console), .NET Framework 2.0, Report Viewer 2005 and of course the WSUS setup file. During setup, select Administration Console Only when installing WSUS on your workstation.


 WSUS PPT Download

Click here to Download WSUS PPT