Did you know that Microsoft Azure provides similar functionality in the cloud? Learn more about Microsoft Azure identity solutions. Create a hybrid identity solution in Microsoft Azure: - Deploy Windows Server Active Directory on Azure Virtual Machines. - Learn about the identity and access management solution available with Microsoft Enterprise Mobility. - Install a replica Active Directory domain controller in an Azure virtual network. - Manage identities for single-forest hybrid environments using cloud authentication. - Learn more about Azure Active Directory and how it can integrate into your existing Active Directory infrastructure. |
Requirement | Description |
---|---|
TCP/IP | Configure appropriate TCP/IP and DNS server addresses. |
NTFS | The drives that store the database, log files, and SYSVOL folder for Active Directory Domain Services (AD DS) must be placed on a local fixed volume. SYSVOL must be placed on a volume that is formatted with the NTFS file system. For security purposes, the Active Directory database and log files should be placed on a volume that is formatted with NTFS. |
Credentials | To install a new AD DS forest, you need to be local Administrator on the server. To install an additional domain controller in an existing domain, you need to be a member of the Domain Admins group. |
Domain Name System (DNS) infrastructure | Verify that a DNS infrastructure is in place. When you install AD DS, you can include DNS server installation, if it is needed. When you create a new domain, a DNS delegation is created automatically during the installation process. Creating a DNS delegation requires credentials that have permissions to update the parent DNS zones. For more information, see DNS Options wizard page. |
Adprep | To add the first domain controller that runs Windows Server 2012 to an existing Active Directory, adprep.exe commands run automatically as needed. These commands have additional credential and connectivity requirements. For more information, see Running Adprep.exe. |
Read-only domain controllers (RODCs) | Additional requirements to install RODCs:
For more information, see Prerequisites for Deploying an RODC. |
Role service technologies | Role service description |
---|---|
Server for NIS | Enables a Microsoft Windows–based Active Directory domain controller to administer UNIX Network Information Service (NIS) networks. For more information, see Overview of Server for NIS (https://go.microsoft.com/fwlink/?LinkId=222677). |
Password Synchronization | Helps integrate Windows and UNIX networks by simplifying the process of maintaining secure passwords in both environments. For more information, see Overview of Password Synchronization (https://go.microsoft.com/fwlink/?LinkId=222676). |