AD

• Configure vm to run on lan.
• Sart server manager.
• Connect to network with FW as a default gateway and change hostname.
• Restart, check hostname and network connectivity.

Install ADDS Role

• In server manager, hit manage > add roles and features.
• Add Active Directory Domain Service
• Promote server to a domain controller. Make sure the name change is applied.
• Root domain name is samuel.local
• Restart

DNS

• After reboot DNS should be installed.
• Go to DNS manager.
• Right-click Forward lookup zone and add a New host.
• Will get a DNS error
• Now, in reverse Lookup Zones, add a New Zone
• Identify the reverse lookup zone by entering the network id
• Now uncheck PTR, Apply, then recheck PTR apply to do a reverse lookup
• This should make the reverse lookup zone 5.0.10.

Create users

• From server manager got to AD DS and Go to Active Directory Users and Computers
• In the user folder, add 2 new users. One with ADM and one without.
• Add the admin account to the Domain Admins group.

WKS 01

• set DNS to ad's IP address
• Log in to wks01 and go to where the name would be changed and change the group to the AD domain.
• Restart
• Should be able to log into wks01 with adm and unprivileged accounts.

Additional Information

• Active directory uses groups to improve security and management. This gives the ability to assign rights and permissions to security groups. https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/manage/understand-security-groups