Setup And Configuration Of Active Directory

This guide shows the implementation of Active Directory in an on-premises enviroment, in this demonstration Azure virtual machines were used to replicate an office enviroment. I would be creating a video shortly around this guide to show live hands-on.

Environments and Technologies

• Azure Virtual Machines (for hosting the AD environment)
• Windows Server 2022 (for Active Directory, DNS, and DHCP)
• Windows 10 Pro (for domain-joined client machines)
• Powershell
• Active Directory Domain Services (AD DS)
• DNS & DHCP Configuration
• Azure Networking (VNet, Subnets, NSGs)

Steps Of Deployment

• Azure Resource Setup
• Deploy Windows Server And Win10 VM And Test Connection
• Install Active Directory Domain Services (AD DS)
• Create Users, Organistion and Group with Powershell
• Configure DHCP, DNS and Default Gateway
• Verify Users Access

Implementations And Deployment

Azure Resource Setup

Create Resource Group and create Windows Server and Windows 10 Pro VMs

Make private subnet IP static, enable Ping port on both VM and download RDP file(Optional)

Deploy Windows Server And Win10 VM And Test Connection

Login with RDP or IP address on Remote Desktop, enable ICMPv4 in both VM firewall for ping and setup DHCP, DNS and DG on Windows Server

Install and configure Active Directory

Install Active Directory, promot to Domain controller and add forest

Create Domain Controller admin, make user admin and login with user created

Use Powershell to Create User, Group and Organization

On Windows Server download Powershell script and user name csv file from https://github.com/DevAra007/active-directory-azure-vm

Open the Powershell script, set execution policy to unrestricted, Navigate to the script and csv folder, run script

Verify that the script runs successfully and confirm the User, Group and Organization was created

Windows 10 Client Network Setup and Join Active Directory Domain

Configure Win10 client internet proctocal, DHCP should be client subnet on the network, DNS and Default gateway should reference active directory ip address.

Join Win10 client to active directory domain

Add Domain Users to Win10 Client and Verify Domain Users Access to Win10 Client

Add domain users to Win10 client through Remote Desktop and restart Win10 Client

Use one of the domain users credentials to sign into Win10 client

Lets verify that the users created on the active directory are able to access the Win10 client computer

The concepts covered shows the creation of Active Directory, promoting it to a Domain controller, creation of the domain name, forest and an admin user, setting network security protocols and ensuring the network link between the Windows server domain controller and the Win10 client computer.

It also shows the use of powershell automation scripts to create 20 users, set passwords, create an organization called IT and also a group. These users were given secure and least privilege access needed to operate the Win10 client and the access was verified.

I would be creating a video shortly around this guide to show live hands-on.

The resources used on Azure was deleted afterwards.