|
border_tl border_tr
Using Server Core as additional DC for EBS Minimize

Franz-Georg Clodt
2008-02-24

You may say "what a strange idea" - but for security enthusiasts it might be a good plan to add a 3rd domain controller to EBS.
Windows 2008 offers the Server CORE installation option, which is a nice way to get a server with a small footprint for special purposes, e.g. as additional domain controller.
Just start the default installation of Windows Server 2008, but choose CORE as servertype.
After installation logon as Administrator with empty password. Now you'll have to make some changes to the machine, but mostly done at the "command prompt".

1. IP- address and DNS-Server settings:
netsh int ip show config : show actual configuration
netsh int ip set address "interface-name" static 192.168.1.200 255.255.255.0 192.168.1.253 1     : configure static address
netsh int ip set dnsserver "interface-name" static 192.168.1.200 primary : configure primary DNS-server (use the address of the Administration Server)

2. rename the core-server:
C:\netdom renamecomputer oldname /NewName:newname

3. change product key ( if necessary):
cscript.exe c:\windows\system32\slmgr.vbs -ipk <productkey>

4. activate machine:
cscript.exe c:\windows\system32\slmgr.vbs -ato

5. join machine to the EBS domain:
netdom join "computername of core-machine" /domain:<ebsdomain.name> /userd:<administrator> /passwordd:<password>

6. reboot:
shutdown /r /t 0

7. connect to the messaging server, put in a Windows Server 2008 DVD (Standard or Enterprise)
    and from the  source\adprep directory on the DVD start "adprep /domainprep"

8. on the core server use the following command to promote the machine as DC:
dcpromo /unattend /RebootOnCompletion:Yes /ReplicaDomainDNSName:<EBS-domainname> /ReplicaOrNewDomain:Replica /ReplicationSourceDC:<full DNS name of messaging server> /SafeModeAdminPassword:<complex_Password>  (one line!)

9. reboot after installation:
shutdown /r /t 0

10. now you should have a third DC:
additional work:

9. activate remote desktop on server-core:
C:\windows\system32\cscript scregedit.wsf /AR 0

10. activate WinRM for server-core:
winrm quickconfig  : creates a http-listener for winrm und and the necessary filewall exception

 

 Print  

Feedback Maximize
border_bl border_br
©2007 EBSfaq.com. All rights reserved.This is not a Microsoft site,it's community. Hosted by 3can.de Terms Of Use Privacy Statement