Configuring DC1

Applies To: Windows 7, Windows Server 2008 R2

DC1 is a computer running Windows Server 2008 R2 that provides the following services:

  • A domain controller for the contoso.com Active Directory® domain.

  • A DNS server for the Contoso.com DNS domain.

  • A file server.

The configuration of DC1 requires the following steps:

  • Install the operating system

  • Configure TCP/IP

  • Install Active Directory and DNS

  • Create a user account with remote access permission

  • Create a shared folder and file

The following sections explain these steps in detail.

Install the operating system

To install Windows Server 2008 R2

  1. On DC1, start your computer using the Windows Server 2008 R2 product disc.

  2. Follow the instructions that appear on your screen.

  3. When prompted to provide a password for the Administrator user account, type Pass@word1

  4. After installation completes and the Initial Configuration Tasks window appears, under 1. Provide Computer Information, click Provide computer name and domain.

Note

If the Initial Configuration Tasks window does not appear, or if you closed it after selecting Do not show this window at logon, you can start it by clicking Start, typing oobe, and pressing ENTER.

  1. On the Computer Name tab, click Change.

  2. In the Computer name text box, type DC1, and then click OK.

  3. On the confirmation window, click OK, click Close on the System Properties dialog box, and then click Restart Now.

Configure TCP/IP

Configure TCP/IP properties so that DC1 has a static IP address of 192.168.0.1 with the subnet mask 255.255.255.0 and a default gateway of 192.168.0.2.

To configure TCP/IP properties

  1. After DC1 restarts, in the Initial Configuration Tasks window, under 1. Provide Computer Information, click Configure networking.

  2. In the Network Connections dialog box, right-click Local Area Connection, and then click Properties.

  3. In the Local Area Connection Properties dialog box, click Internet Protocol Version 4 (TCP/IPv4), and then click Properties.

  4. Click Use the following IP address, and configure the following settings:

    1. In IP address, type 192.168.0.1.

    2. In Subnet mask, type 255.255.255.0.

    3. In Default gateway, type 191.168.0.2.

    4. In Preferred DNS server, type 192.168.0.1.

  5. Click OK, and then click Close.

  6. Close the Network Connections window.

Install Active Directory and DNS

Configure the computer as a domain controller for the Contoso.com domain. This will be the first and only domain controller in this network.

To configure DC1 as a domain controller

  1. On DC1, in the Initial Configuration Tasks window, under 3. Customize This Server, click Add roles, and then perform the following steps in the Add Roles Wizard.

    1. In the Add Roles Wizard, on the Before You Begin page, click Next.

    2. On the Select Server Roles page, select Active Directory Domain Services.

    3. In the Add features required for Active Directory Domain Services dialog box, click Add Required Features.

    4. Back on the Select Server Roles page, click Next.

    5. On the Active Directory Domain Services page, click Next, and then on the Confirm Installation Selections click Install.

    6. On the Installation Results page click Close this wizard and launch the Active Directory Services Installation Wizard (dcpromo.exe).

  2. In the Active Directory Domain Services Installation Wizard, perform the following steps:

    1. On the Welcome page, click Next.

    2. On the Operating System Compatibility page, click Next.

    3. On the Choose a Deployment Configuration page, select Create a new domain in a new forest, and then click Next.

    4. On the Name the Forest Root Domain page, type contoso.com, and then click Next.

    5. On the Set Forest Functional Level page, select Windows Server 2008 R2, and then click Next.

Note

The choice does not affect the outcome of this step-by-step guide.

6.  In the **Additional Domain Controller Options** page, ensure that **DNS server** is selected, and then click **Next**.  
      
7.  On the notice dialog that indicates that a delegation for the DNS server cannot be created, click **Yes**.  
      
8.  On the **Location for Database, Log Files, and SYSVOL** page, click **Next**.  
      
9.  On the **Directory Services Restore Mode Administrator Password** page, type **Pass@word1** in both text boxes, and then click **Next**.  
      
10. On the **Summary** page, click **Next**.  
      
11. On the progress dialog box, select **Reboot on completion**.  
      
12. On the **Completing** page, click **Finish**, and then click **Restart Now**.  
      

Important

You must allow the computer to restart after installing Active Directory before proceeding.

Create a user account with remote access permission

Create a user account and configure the account with remote access permission.

To create and grant permission to a user account in Active Directory

  1. After DC1 restarts, logon as Contoso\Administrator

  2. Click Start, click Administrative Tools, and then click Active Directory Users and Computers.

  3. In the navigation tree, expand contoso.com, right-click Users, click New, and then click User.

  4. In Full name, type user1, and in User logon name, type user1. Click Next.

  5. In Password, type Pass@word1, and in Confirm password, type Pass@word1 again.

  6. Clear the User must change password at next logon check box, and then select the User cannot change password and Password never expires check boxes.

  7. Click Next, and then click Finish.

To grant remote access permission to user1:

  1. In the left tree, click Users. In the details pane, double-click user1.

  2. On the Dial-in tab, under Network Access Permission, click Allow access, and then click OK.

  3. Close Active Directory Users and Computers.

Create a shared folder and file

DC1 is a file server that should be accessible to a remote user after access and authentication methods have been configured.

To create a shared folder and file

  1. On DC1, click Start, and then click My Computer.

  2. Double-click Local Disk (C:).

  3. On the toolbar, click New folder, and then type the nameCorpData.

  4. Right-click the CorpData folder, click Share with, and the click Specific people.

  5. In the File Sharing dialog box, type Everyone, and then click Add.

  6. In the list, click the entry for Everyone, and then click Read/Write.

  7. Click Share, and then Done to complete the process.The folder is now accessible as \\dc1\corpdata.

  8. Double-click the CorpData folder, and then right-click in the blank space. Point to New, and then click Text Document.

  9. Name the document VPNTest (the .txt file type extension is added automatically).

  10. Open VPNTest and add some text.

  11. Save and close VPNTest.