How to add a child domain in an existing Directory Domain Services (AD DS) forest in Windows Server 2012

Home > Blogs > Windows Server > How to add a child domain in an existing Directory Domain Services (AD DS) forest in Windows Server 2012

How to add a child domain in an existing Directory Domain Services (AD DS) forest in Windows Server 2012

Like This Blog 9 Rick Trader
Added by February 4, 2013

In this blog we will explore adding a child domain to an existing forest. The Active Directory Domain Services (AD DS) design team has finished the design phase for the new AD DS environment and now it is time to add a new child domain to the environment.  Using Microsoft’s best practices the Domain Name System (DNS) has been configured to support the new child domain. The following steps have been accomplished:

  • A Site named Arizona has been created and configured in AD DS. (see diagram below)

  • A static IP Address was configured with the DNS entry pointing to the corporate DNS server.
  • The server DNS suffix has been updated on the new DC computer name.
  • DNS has been configured with the child domain.
  • Verify the server has registered its host record for the new Domain. (see diagram below)

To install AD DS complete the following steps:

Use Server Manager to add the Active Directory Domain Services Role to install the Binaries to support the server becoming a Domain Controller.

  1. Launch Server Manager, select the Manage drop down menu, select Add roles and features.

  1. Review the Before You Begin page, Click Next.
  2. On the Select installation type page ensure Role-based or feature-based installation radial button is selected, click Next.

  1. On the Select destination server page Select the desired server from the Server Pool.

Note: The 2012 Server Manager allows roles and features to be installed remotely.

  1. Click on the Active Directory Domain Services box.

  1. The Add features that are required for Active Directory Domain Service dialog box pops up, select Add Features, click Next.

  1. Do not add any features on the Select features page, click Next.

  1. Review the Active Directory Domain Services information page, click next.

  1. The AD DS Binaries are now being installed, click Close to close the Installation progress dialog box.

10. If you close the above window you can click on the notification flag to check on installation status.

 

Note: The Binaries are now installed on the server to support this server becoming a Domain Controller. Use DCPROMO to promote this computer to a Domain Controller.

Using Server Manager to make this server a Domain Controller and install the replica domain controller.

  1. In previous versions of Windows Server you used DCPROMO to create the first Domain ControllerOn Window Server 2012 running DCPROMO will result in the following dialog box. DCPROMO is still supported for unattended installations.

  1. In Server Manager Title bare click on the yellow triangle to perform post-deployment configuration of promote the server to a Domain Controller.

  1. Click on Promote this server to a domain controller to start the promotion wizard.

4. On the Deployment Configuration page complete the following tasks

  1. Select the Add a domain to an existing forest radial button.
  2. On the Select domain type drop down box select Child Domain.
  3. Fill in the Parent domain name box with the parent AD DS Domain Name.
  4. Fill in the desired New domain name.
  5. Click change to supply the credentials for a member of the Enterprise Admins group.

  1. Verify the entries change if needed, click Next.

  1. On the Domain Controller Options page De-select DNS or GC during this installation, Enter a desired DSRM Password, click Next.
    Note: Because the server’s IP Address is in a different site defined in Active Directory Sites and Services, the site name has been pre-selected for that site.

 

  1. Verify the NetBIOS domain name and click Next.

  1.  On the Paths page verify the desired locations of the Database, Log files and SYSVOL folders, change the locations is required, click Next.

  1. On the Review Options page, click Next.

Note: If an Unattended PowerShell installation script is desired, click view script and then save from the file drop down menu.

  1. The AD DS Configuration Wizard will perform and Prerequisite check before the installation can continue. After the check is completed successfully click Install.

10. The server will restart once the configuration has completed, the server is now a domain controller for the newly formed domain.

Verifying the installation of AD DS

  1. Logon to the Parent Domain’s First Domain Controller using the Administrator account credentials.
  2. Launch the DNS console and verify the creation of Service Records for the newly established domain controller. In the appropriate domain and site.
  3. Launch Active Directory Sites and Services, verify the new Domain Controller has populated the correct site.

Active Directory Domain Services is now installed and has established the child domain, until next time, RIDE SAFE!

 

To review the previous blogs visit:

Establishing an AD DS Forest

Adding a replica Domain Controller to an existing AD DS Domain

Adding a replica Domain Controller to an existing AD DS Domain using the Install From Media (IFM) method

Adding a Replica Windows Server 2012 Domain Controller using Cloning

 

Rick Trader
Windows Server Instructor – Interface Technical Training
Phoenix, AZ

Videos You May Like

Using Navigation Controls in a Collaboration Site in SharePoint

0 340 1

In this SharePoint training video, I want to talk about the Navigation Controls in SharePoint. They tend to fall into two kind of different categories; one with the navigation controls in a typical Collaboration Site such as a Team Site or a Project Site. These are Sites that are based on the Team Site Template … Continue reading Using Navigation Controls in a Collaboration Site in SharePoint

How to clone a Windows Server 2012 or 2012 R2 Domain Controller

3 1535 3

One of the coolest new features in Window Server 2012 and Windows Server 2012 R2 is the ability to clone a Domain Controller. In the past, if we had virtualized Domain Controllers and we actually took a snapshot of it and then rolled back to that snapshot, it would break the logon service on that … Continue reading How to clone a Windows Server 2012 or 2012 R2 Domain Controller

Detailed Forensic Investigation of Malware Infections – April 21, 2015

4 630 5

How does an investigator hunt down and identify unknown malware? In this recording of our IT Security training webinar on April 21, 2015, Security expert Mike Danseglio (CISSP / CEH) performed several malware investigations on infected computers and identify symptoms, find root cause, and follow the leads to determine what’s happening. He demonstrated his preferred … Continue reading Detailed Forensic Investigation of Malware Infections – April 21, 2015

Write a Comment

See what people are saying...

    Share your thoughts...

    Please fill out the comment form below to post a reply.