Hey everyone, for those that have just begun their journey as a domain admin or want to become one, knowing how active directory works will help you in achieving your goals as a domain admin.
Last updated
For our lab, we'll be using Windows Server 2016 Desktop Experience. You can download it from this link: https://www.microsoft.com/en-us/evalcenter/download-windows-server-2019. Alternatively, you can search for 'Windows Server 2016' on Google and make sure to download the 64-bit ISO edition.
You'll also need to download a Windows 10 ISO from this link: https://www.microsoft.com/en-us/software-download/windows10. After clicking on the link, choose the 'Create Windows 10 installation media' option and select the 'ISO file' option. This allows you to download the Windows 10 ISO file.
Lastly, you'll need virtualization software such as Hyper-V, VirtualBox, or VMware. For this tutorial, I'll be using VMware 17 Pro, which was kindly gifted to me :>
You'll first want to begin with installing Windows Server 2016. Click on 'Install a new VM' and when configuring your VM, add two NIC: one internal and the other NAT or external. It should look like this:
Install Windows Server 2016 Desktop Experience by following the installation prompts. (I recommend giving your machine at least 2 cores and 2 GB of RAM.)
While you're waiting for the installation to complete, you can install the Windows 10 VM.
Once you've loaded into your VM, press the Windows key and R simultaneously to open the 'Run' dialog box.
Type in 'ncpa.cpl' to open the 'Network Connections' window.
Look for the adapter that's connected to the internet and rename it as 'External/Internet'.
Right-click on the Internal NIC and select 'Properties'.
In the 'Internet Protocol Version 4 (IPv4)' properties, assign the IP address of 10.0.01 with a subnet mask of 255.0.0.0 Leave the default gateway empty, as it will be assigned by the DC/Windows server. (If IPV6 service is on, disable it.)
In the 'DNS' field, put either the DC IP address or the loop back address 127.0.0.1.
While you're at it, press the Windows key and R simultaneously and type in 'sysdm.cpl'. Click on 'Change' and give it the name 'DC'.
Restart your PC and go to 'Add Roles and Features' to install Active Directory Domain Services. Restart your PC after installation.
Open Active Directory Domain Services
And click on 'Add a new forest'. Name the forest whatever you want; for example, I named mine "LTL.net".
Enter a password when prompted. For my lab, I use Pass@123.
Click 'Next' until prompted to install and restart at the end.
Now your Computer/VM will restart, and you will log into your Domain\Administrator.
Inside your domain, create a new organizational unit (OU) and name it 'Admin'. Turn off protection from accidental deletion.
Add yourself as the user. Set the password to 'never expire' and disable the 'user must change password on logon' setting.
Right-click the user and go to 'Properties'. Click on 'Member Of', type 'Domain Admin', and click 'Find' and 'Apply'.
Logout and log back in as your Domain Admin User.
It should look like this
Now go into add roles and features and add remote access, in "Roles Services" section press on "Routing" (the VPN services will also get enabled by default.)
After installing Remote service, press on tools and into "Routing and Remote Access".
Right-click on your server name, and press on "Configure and Enable Routing and Remote Access"
Over here we want to set up NAT, so choose that
Here you want to choose your External Switch, the one that is using DHCP and is connected to the web
After you finished that, it should look like this
Now you want to go into "Add roles and features again", and choose "DHCP Server". You can then open it through tools.
Now you'd want to right-click on IPv4 and press "New Scope"
On the name you can choose the range we'll be using the scope of the IP
Over here Type your DC IP, 10.0.0.1 as we are using it as our gateway and DNS server. After that just press next till the end, and ignore the WIM server, it's old tech.
To enable the scope, you need to right-click on your DC name and click on Authorize. You'll see that it has a green V icon instead of the Red X.
Go ahead and open your ADUC (Active Directory Users and Computers), and add a new OU calling it Users.
Like so. (Don't Forget to disable "Protect container from accidental deletion")
Create a new user by pressing on the icon, like so
After that, enter the user password, make sure to disable the "User must change password at next logon", and enable "Password never expires. (You won't enable this on a real work place, this is a lab, so it's fine.)"
Now that the user is created, create another VM with Windows 10 ISO (I'll be using my edited ISO for the sake of convince (it's faster). I will make a video and a blog about it soon.), don't forget to give the Windows 10 VM, internal network as well. (By doing that, we're simulating a LAN situation. The IP of our DC 10.0.0.1 is an internal IP, and is only accessible on the internal network, though I'm entering networking again. I'll cover this more in depth on a different blog/Vid).
Now, before joining with the new computer to the domain, we want to change it name.
Go into run by pressing Win + R and type sysdm.cpl, press on change, and change the computer name.
Now follow the same step and add the computer to the domain like so
Now you can log in with the account you made and test some GPO, you could also try some sys internals tools like BGinfo.
