Creating an Active Directory Domain

  • Article

Before you can enable Active Directory directory service authentication for your Commerce Server Web site user profile information, you must set up an Active Directory domain on your site. It is recommended that you dedicate a replicated pair of servers for this purpose.

Use one of these procedures only if you understand Active Directory concepts, and have planned your Active Directory structure. For information about Active Directory, see the Microsoft Windows 2000 Server Deployment Planning Guide.

To set up an Active Directory domain by creating a new domain tree

To set up an Active Directory domain by creating a new child domain in an existing domain tree

To set up an Active Directory domain by creating a new domain tree

  1. Click Start, and then click Run.

  2. In the Run dialog box, in the Open box, type dcpromo, and then click OK.

  3. In the Active Directory Installation Wizard, click Next.

  4. In the Domain Controller Type dialog box, select Domain controller for a new domain, and then click Next.

  5. In the Create Tree or Child Domain dialog box, select the Create a new domain tree option, and then click Next.

  6. In the Create or Join Forest dialog box, do the following:

    Use this To do this
    Create a new forest of domain trees Select this option if this is the first domain in your organization, or if you want the new domain tree you are creating to be completely independent of your current forest.
    Place this new domain tree in an existing forest Select this option if you want the users in the new domain tree to have access to resources in existing domain trees, and vice versa.

  7. If you selected the Create a new forest of domain trees option, in the New Domain Name dialog box, in the Full DNS name for new domain box, type the full Domain Name System (DNS) name for the new domain.

  8. In the NetBIOS Domain Name dialog box, in the Domain NetBIOS name box, type the name that users of earlier versions of Microsoft Windows will use to identify the domain. It is recommended that you accept the default, which is a shortened version of the full DNS name. Click Next.

  9. In the Database and Log Locations dialog box, accept the default settings unless you have a specific reason to change them.

  10. In the Shared System Volume dialog box, accept the default settings unless you have a specific reason to change them.

  11. If DNS is not installed on your computer, you will be prompted to install it. Select Yes, install and configure DNS on this computer, and then click Next.

  12. In the Permissions dialog box, select the Permissions compatible only with Windows 2000 servers option, and then click Next.

  13. In the Directory Services Restore Mode Administrator Password dialog box, do the following:

    Use this To do this
    Password Type the password you want to assign to the Administrator account for the server.
    Confirm password Type the password again to confirm it.

  14. In the Summary dialog box, review the options you selected to ensure your Active Directory configuration is correct. If it is, click Next, or, to reconfigure your selections, click Back.

    The Configuring Active Directory dialog box appears, notifying you that your Active Directory configuration is being installed on your computer.

  15. In the Completing the Active Directory Installation Wizard dialog box, click Finish.

To set up an Active Directory domain by creating a new child domain in an existing domain tree

  1. Click Start, and then click Run.

  2. In the Run dialog box, in the Open box, type dcpromo, and then click OK.

  3. In the Active Directory Installation Wizard, click Next.

  4. In the Domain Controller Type dialog box, select Domain controller for a new domain, and then click Next.

  5. In the Create Tree or Child Domain dialog box, select the Create a new child domain in an existing domain tree option, and then click Next.

  6. In the Child Domain Installation dialog box, do the following:

    Use this To do this
    Parent domain Type the parent domain name.
    Child domain Type the child domain name.

  7. In the NetBIOS Domain Name dialog box, in the Domain NetBIOS name box, type the name that users of earlier versions of Microsoft Windows will use to identify the domain. It is recommended that you accept the default, which is a shortened version of the full DNS name. Click Next.

  8. In the Database and Log Locations dialog box, accept the default settings unless you have a specific reason to change them.

  9. In the Shared System Volume dialog box, accept the default settings unless you have a specific reason to change them.

  10. If DNS is not installed on your computer, you will be prompted to install it. Select Yes, install and configure DNS on this computer, and then click Next.

  11. In the Permissions dialog box, select the Permissions compatible only with Windows 2000 servers option, and then click Next.

    Ee799699.caution(en-US,CS.20).gif CAUTION

    • Allowing backward compatibility can lead to security problems with Microsoft Commerce Server 2002.

  12. In the Directory Services Restore Mode Administrator Password dialog box, do the following:

    Use this To do this
    Password Type the password you want to assign to the Administrator account for the server.
    Confirm password Type the password again to confirm it.

    The Configuring Active Directory dialog box appears, notifying you that your Active Directory configuration is being installed on your computer.

  13. In the Completing the Active Directory Installation Wizard dialog box, click Finish.

See Also

Small Site Configuration

Joining Web Servers to an Active Directory Domain

Copyright © 2005 Microsoft Corporation.
All rights reserved.