Create Active Directory and Setup
Learn how to install and configure Active Directory from scratch on a Windows Server. This guide walks you through the complete setup process with practical, hands-on steps for building your own domain environment.
π οΈ Create Active Directory and Setup
Active Directory (AD) setup is one of the most important tasks for system administrators, especially in enterprise or small-business environments. This guide will help you configure your own AD environment from scratch using Windows Server.
π¦ What Youβll Need
- A computer or virtual machine with Windows Server 2016/2019/2022
- Administrator access to the server
- Static IP address configured
- A planned domain name (e.g.,
corp.local)
Loading diagram...
𧱠Step 1: Set a Static IP Address
Before installing Active Directory, it's recommended to assign a static IP address to the server.
- Open Server Manager β Click on Local Server.
- Under Network, click the Ethernet link.
- In the network adapter settings:
- Go to Properties β Select IPv4 β Click Properties.
- Choose Use the following IP address and configure:
- IP:
192.168.1.10 - Subnet:
255.255.255.0 - Gateway:
192.168.1.1 - DNS:
127.0.0.1(for local DNS)
- IP:
Loading diagram...
π§° Step 2: Install AD DS Role
- Open Server Manager.
- Click Manage β Add Roles and Features.
- Proceed with Role-based or feature-based installation.
- Select your server from the list.
- In the Roles section, check Active Directory Domain Services (AD DS).
- It will auto-select required features. Click Next and complete the installation.
- Reboot if required.
Loading diagram...
𧱠Step 3: Promote Server to Domain Controller
After the role is installed:
- In Server Manager, click the yellow alert flag β Promote this server to a domain controller.
- Choose Add a new forest, and specify your root domain name (e.g.,
corp.local). - Set the Directory Services Restore Mode (DSRM) password β keep this safe!
- Click Next through the options, reviewing:
- DNS options
- NetBIOS name (auto-generated or customized)
- Paths for AD database/logs/SYSVOL (default is fine)
- Click Install. The server will reboot after promotion.
Loading diagram...
π Step 4: Verify the Domain
After reboot:
- Login using:
corp\Administrator - Open Server Manager and confirm roles:
- AD DS
- DNS
Loading diagram...
Verify DNS:
- Open DNS Manager
- Ensure your domain (
corp.local) is listed under Forward Lookup Zones.
π€ Step 5: Create Users and Organizational Units (OUs)
You now have a functioning domain controller! Letβs create a user and an OU.
- Open Active Directory Users and Computers (ADUC) from the start menu.
- Right-click on the domain β New β Organizational Unit β Name it e.g.,
IT Department. - Right-click the OU β New β User.
- First name:
John - Username:
john.doe - Set a password and configure as required.
- First name:
You can now log in to domain-joined computers using corp\john.doe.
Loading diagram...
𧩠Optional: Join a Client to the Domain
On a Windows 10/11 machine:
- Open System Properties β Change settings next to computer name.
- Click Change β Select Domain and enter
corp.local. - Enter domain admin credentials (
corp\Administrator). - Reboot the machine.
- Login using the domain user credentials created earlier.
π Diagram: AD Setup Workflow
Loading diagram...
π§ Summary
Youβve now created your own Active Directory environment. This setup is foundational to managing users, groups, computers, and security policies in a domain.
β Youβve learned how to:
- Set up a static IP address
- Install the Active Directory Domain Services (AD DS) role
- Promote a server to a Domain Controller
- Create Organizational Units (OUs) and users
- Join client machines to the domain
This setup mirrors real-world enterprise scenarios, so take time to repeat and practice these steps until you're comfortable with every part of the process.