Install and Configure DNS Active Directory

To install Active Directory and DNS using the Server Manager.

Use the buttons below to navigate through the lesson

Select Server Manager.

Or from the Quick Launch Taskbar.

Select Roles. Then Add Roles. Before you continue verify that;

You can skip this page by default.

Click Next to continue

Select Active Directory Domain Services. There is no need to select DNS Server; this role will be added with DCPROMO. Then Click Next.

Ensure you read Things to Note. Then Click Next. Click Install.

The Active Directory Binaries have been installed. Click Close this wizard and launch dcpromo.exe. You can also launch dcpromo from the Run box. Click Next.

Operating System Compatibility warning about new Server 2008 security settings. Check there is no compatibility issue with existing network infrastructure. If none click Next.

Select Create a new domain in a new forest and Click Next.

Fill in Domain name and Click Next.

Domain name checked and verified as not in use.

There are 3 Forest functional levels
Windows 2000, Windows 2003, Windows 2008.

Select the level which suits the existing infrastructure, this can be changed at a later date. Click Next.

Domain functional level should be set to match Forest Functional level. This can be changed later. Click Next

Select DNS server then Next to continue. Next to continue. The Wizard cannot contact the DNS server for this zone. Select yes to continue; DNS will then be installed. The Database folders are assigned. Click Next to accept the defaults. Restore mode password must be set, click Next to continue.

Create Unattended Answer file

Click Export settings if you wish to create an unattended answer file for installing Active Directory on server Core. Type in the file name. click Save. The file can be exported later. The wizard can be cancelled if you are just creating an answerfile. To continue Active Directory install click Next. The installation will now continue. The Active Directory components are installed. Click Finish to complete the installation. The Server needs to be restarted to finalise the installation. Click Restart Now. Server restarts.

Select DNS from administrative tools. Expand DNS console. Note the folders for Active Directory DNS.

Zone Properties

Right click the zone, Select Properties. The General Tab displays the general options you setup when creating the zone. The zone can be stopped and started from here and the zone type and Replication can also be changed. The aging/scavenging button can be used to configure how long records stay valid in the zone.

Dynamic DNS

A big advantage of using Windows 2008 DNS is that it can be updated automatically. When a client is given a name and an IP address, the DNS server is automatically updated, saving the administrator the job of adding every single entry into the DNS database.

A Windows 2000/XP/Vista Client with a static or dynamically assigned IP address will register its name and IP address with a DNS Server.

Non-Windows 2000/XP/Vista clients can’t use dynamic updates, therefore the DHCP server will automatically update the DNS Server. The server will then be known as a DNS Proxy. However, this method has security issues because a malicious DHCP client could ruin your DNS database.

The SOA record contains information about the Primary Server, which is responsible for the zone as well as expiry and time to live (TTL) information used for replication. The Name Servers tab displays information on which servers hold a copy of the zone-file. Servers holding replicas of this zone would be displayed here.

The Security tab can be used to configure who can manage, read and write object to the DNS database. The Zone Transfers Tab can be used to configure which machines are allowed to hold a copy of this zone. The default will replicate to all servers who have a copy of this zone. When using Active-Directory Integrated Zones, replication is managed via Active Directory. However if you are using Primary or Secondary zone replicas then you will still need to configure zone transfers. WINS lookup allows you to configure the DNS server to use WINS if a name resolution request fails.