I had to deploy a new DC at work to take advantage of some of the management capabilities supplied in Server 2008 R2 (Powershell Active Directory Modules) but wanted this DC to be Special.

Yep “Special”.  I wanted a REAL DC.  CORE.  Secure.  Restricted.  

Bet ya thought it was going to be tricky too didn’t you?

Well it isn’t

Thanks to the fact we now have a built in utility in the Core edition called “Sconfig” a LOT of the nasty stuff is easily taken care of.  

You can assign those static IP addresses to your network cards, name your machine, allow management and reboot without any stress on the CORE version of Server 2008 R2.

But Making that  a DC?  I’ll bet you thought I’d pull the last of my hairs out with that one.

Nope.  I *DID* in fact already setup in my test Environment almost just under two years ago a NEW Domain on a single Core box.   So I DID remember the command line structure really wasn’t nasty.  It takes a little typing but thanks to this article on Technet all the information you need is there.

The beautiful part is the process automatically calls up the OCSETUP and gets the Active Directory binaries installed at the same time.   And unlike PREVIOUS Core versions you can extend POWERSHELL to it for better management and Remote CmdLets and Shell sessions.



You were waiting for the command line.  Sorry!

dcpromo /ReplicaorNewDomain:Replica /Password:* /UserDomain:"CONTOSO.LOCAL"
/Username:"AdministratorName" /AutoConfigDNS:Yes /DomainNetBiosName:"CONTOSO.LOCAL"
/ParentDomainDNSName:"CONTOSO.LOCAL" /ReplicaDomainDNSName:"CONTOSO.LOCAL"

This is for the ficticious Domain of CONTOSO.LOCAL. You’ll have to tie the lines together of course.  And It also sets your “SAFEMODE” password.

If you’re like to Automate this process?  There are two EXCELLENT articles written by Mitch Garvis and Steve Syfuhs on the subject.

Now if you’re adding this Server 2008 R2 to an EXISITING Domain that ISN’T already running a Server 2008 R2 DC, you’ll have to run a /FORESTPREP and /DOMAINPREP in that order from the ADPREP provided under the SUPPORT folder on the server media.   There are additional objects and Schema that need to be added into Active Directory.

But that takes very little time.  

The best part is if you have Windows 7 and the new RSAT tools.  This configuration allows you to immediately leverage ADWS (Active Directory Web Services) so you can use the new Administrative center on your A/D.  Life for Admins get’s a LOT nicer and easier to work with.  Plus you get the EXTRA bonus of the Active Directory Modules for Powershell V2.  Creating an manipulating users in a SINGLE line!


Enjoy Server 2008 R2 and all it has to offer YOU!

The Energized Tech