* VM: 2 cores, 2 sockets (numa); 2gb ram; 50 GB virtio HDD on qcow2 (iothread); virtio nic; 2k12r2 vl iso on ide2, virtio iso on ide3
* VM for print: 2nd 50 GB virtio HDD on qcow2 (iothread)                                                  
* DC's: datacenter server core                                                                              
* print: datacenter with GUI                                                                                     
* load driver: virtio -> viostor -> 2k12r2 -> amd64                                                                  
* next (install on main hdd in a single partition)                                                                     
                                                                                                                          
* set initial password, log in                                                                                                 
sconfig - option 2 - set name, reboot                                                                                              
                                                                                                                                   
install netkvm and baloon drivers using pnputil                                                                                       
install blnsvr.exe service                                                                                                                  
                                                                                                                                              
* sconfig:                                                                                                                                        
4 - 1, 3, yes, 4                                                                                                                                      
7 - e, 2                                                                                                                                                  
9 - change timezone to central, set hours correctly (-2)                                                                                                                  
8 - 10, 1, s, 205.215.68.84/85, (enter), 205.215.68.254, 4                                                                                                                                 
5 - a
15

powershell:
Install-WindowsFeature AD-Domain-Services
Install-WindowsFeature DNS


on 1st DC:
dcpromo /ConfirmGc:Yes /ForestLevel:4 /DomainNetBiosName:"CES" /InstallDNS:Yes /NewDomain:Forest /NewDomainDNSName:"ces.pnw.edu" /RebootOnSuccess:Yes /ReplicaOrNewDomain:Domain /SafeModeAdminPassword:"**PASSWORD**"
(wait for AD to set up and server to reboot, then log in again)


on 2nd DC:
sconfig:
8 - 10, 2, 205.215.68.84, (enter), 4
15

dcpromo /ConfirmGc:Yes /ForestLevel:4 /DomainNetBiosName:"CES" /InstallDNS:Yes /RebootOnSuccess:Yes /ReplicaDomainDNSName:"ces.pnw.edu" /ReplicaOrNewDomain:Replica /SafeModeAdminPassword:"**PASSWORD**" /UserDomain:"ces.pnw.edu" /UserName:"Administrator" /Password:"**PASSWORD**"
(wait for AD to set up and server to reboot, then log in again)

sconfig:
8 - 10, 2, 127.0.0.1, (enter), 4
15


on management VM:
join ces.pnw.edu domain
set up DNS settings to resolve upstream successfully

on both:
netsh interface ipv4 set winsservers "Ethernet" static 205.215.127.205
run purdue_kms.cmd

time settings (see http://blog.shiraj.com/2009/09/dcgetdcnametime_server-call-failed-error-1355/) on both domain controllers:

rem formerly NT5DS:
reg add HKLM\SYSTEM\CurrentControlSet\Services\W32Time\Parameters /v Type /d NTP /f

rem formerly 0xa:
reg add HKLM\SYSTEM\CurrentControlSet\Services\W32Time\Config /v AnnounceFlags /t REG_DWORD /d 0x5 /f

rem formerly time.windows.com,0x9
reg add HKLM\SYSTEM\CurrentControlSet\Services\W32Time\Parameters /v NtpServer /d "ntp1.itap.purdue.edu,0x8 ntp2.itap.purdue.edu,0x8 ntp3.itap.purdue.edu,0x8 ntp4.itap.purdue.edu,0x8" /f

net stop W32Time
net start W32Time
w32tm /resync

don't use ipv6 dns server (prevents misidentifying network interface, as per http://serverfault.com/questions/362374/domain-controller-thinks-its-on-a-public-network):

netsh interface ipv6 set dns name=Ethernet source=dhcp
computer/domain_controller_2k12_notes.txt · Last modified: 2017/02/10 12:32 by tdobes
Recent changes RSS feed Driven by DokuWiki Valid XHTML 1.0 Valid CSS