Sharing of thoughts and information is what blogging is all about. This way we can learn from each other. Post A Comment!These postings are provided "AS IS" with no warranties, and confers no rights. You assume all risk for your use.
Resident Bloggers
Chris Di LulloSr. IT Pro Marketing Manager Twitter | LinkedIn Pierre Roman Twitter | LinkedIn Mitch Garvis Twitter | LinkedIn Anthony Bartolo Twitter | LinkedIn
We often get asked how to do certain “simple” operations on the GUI when running the Server Core installation of Windows Server 2008 R2. While the SCONFIG utility allows you to perform a number of tasks quickly, it does not cover every possibility. There are still times when you need to go to the command line or look into using PowerShell. In this post, Mitch Garvis takes you through how to create a new Active Directory Forest in Server Core.
This article explains how to install a new domain forest on Windows Server Core, or in the Windows Server CLI (Command Line Interpreter). I will not discuss any other option for RODCs, existing domains, child domains, and so on… there are a plethora of articles out there that describe those already.
It astounded me the first (several) times I tried to create a new domain using Windows Server Core installations as my first domain controller in the forest. There are, I should mention, copious articles on creating additional DCs in an existing domain, but I have not come across too many (any?) that explained creating the FIRST… i.e.: creating the forest FOR the trees
This evening Steve Syfuhs and I sat down and attempted to do just that. Actually our original intentions had very little to do with that, but as we discovered along the way we would have two choices:
I should point out that between us we read several dozen articles (including some written by some very reputable IT Pros) that CLAIMED that it was possible, but none that elaborated.
So we started clawing our way through the tidbits we gleaned from various sources and came up with the following unattend file that did the job:
[DCInstall] InstallDNS=yes NewDomain=forest NewDomainDNSName=swmi.ca DomainNetBiosName=SWMI SiteName=Default-First-Site-Name ReplicaOrNewDomain=domain ForestLevel=3 DomainLevel=3 DatabasePath="%systemroot%ntds" LogPath="%systemroot%ntds" RebootOnCompletion=yes SYSVOLPath="%systemroot%sysvol" SafeModeAdminPassword=Pa$$w0rd
Now: Once the file was created we put it in the root of C: on the server core machine, and typed the following command:
dcpromo /unattend:c:unattend.txt
The next user interaction was (after a reboot) a logon prompt for the SWMIAdministrator account.
I hope this helps the next group of IT Pros trying to claw their way through the process… Creating AD Forests and Domains is something I have done a thousand times but always in GUI mode; from now on I can do it either way… and so can you!
Mitch - I'm a Windows 7 PC My blog | Twitter | Facebook | LinkedIn | MVP Profile | Virtual Business Card | About Me
This post also appears on garvis.ca.
excellent. I've done the same about a year ago.
This is what I recommend to my customers.
Server Core is more secure than the full installation with the GUI.
Also make sure that your Admins are Powershell ready.
Great Thanks