installing and configuring active directory server on microsoft server 2008

Reading Time: 5 minutes

In this tutorial I will show you how to install ldap on the other hand well known way Active directory. What active directory does is briefly you may read it on wikipedia 

Before we start, we need to assign a static ip address to our server, the below what i assigned for my server


I assume that you have successfully installed and updated your Server and let us get started with the installation first. On your keyboards press on Windows+R and type dcpromo which will launch the AD application


This will prepare our AD server and when the loader completed you will see this screen click on next


Dismiss the warning and click Next


Since this is our newly established server we are choosing the new forest option


Wee came to the important screen this is where we identify our domain name like on the internet whatever, it is advised to use local names within local servers because when a client connected to the network or domain may get confused and cannot resolve the real server, I am identifying my server as aslan.corp.local


Checking the FQDN whether it may exist on the network


Forest function level, I am choosing Server 2008 R2 option, I am not familiar with these functions, to get informed better just google it


We need to install dns server for our server to be resolved on the network, automatically let it install


This screen is not a big deal click on yes


Choosing the destination for necessary stuff


Set the admin password for domain controller


Summary screen


And we are good to go


Dont forget to click on rebook on completion, so that the required restart will be achieved by the operation system automatically. This role installation may take up some time depending on your computer hardware.

So far there is one installation left the LDAP. On initial configuratin tasks windows click on add roles and on the list choose Active Directory Lightweight Directory Services and click on next






Now installation begins


And we are good to go with LDAP


So now lets add a user with full rights and we can give it a shot to see and add users computers on AD. Type in dsa.msc

Go to users and right click on the right pane and create a new user


give it a short name for now we can make this a temp admin out of the user


So this is a bit tricky part when we try to set windows server has a strong password sequence so that you need one upper letter in your password type something like Tugrul3445admin


So now time to grand the newly created user the domain and admin rights. Right click on the user and click on properties and navigate to the Members of tab


Click on add and give these rights


Click on Okay and Apply in the and we now have our user with full domain and admin rights. so lets try to list our domain users and groups. To see that we need to gather cn and dc names launch command line and type in this command

dsquery user -name <username>

You will see something like this:


I used JXplorer to browse through my AD server

The below example connection config


Dont forget to turn your firewall off or if you want to use the firewall then add the incoming ports the exceptions port of 398 SSL 698

All attributes of a user Microsoft AD

Active Directory Attribute list