In this tutorial I will show you how to install ldap on the other hand well known way Active directory. What active directory does is briefly you may read it on wikipedia
Before we start, we need to assign a static ip address to our server, the below what i assigned for my server
I assume that you have successfully installed and updated your Server and let us get started with the installation first. On your keyboards press on Windows+R and type dcpromo which will launch the AD application
This will prepare our AD server and when the loader completed you will see this screen click on next
Dismiss the warning and click Next
Since this is our newly established server we are choosing the new forest option
Wee came to the important screen this is where we identify our domain name like on the internet google.com whatever, it is advised to use local names within local servers because when a client connected to the network or domain may get confused and cannot resolve the real server, I am identifying my server as aslan.corp.local
Checking the FQDN whether it may exist on the network
Forest function level, I am choosing Server 2008 R2 option, I am not familiar with these functions, to get informed better just google it
We need to install dns server for our server to be resolved on the network, automatically let it install
This screen is not a big deal click on yes
Choosing the destination for necessary stuff
Set the admin password for domain controller
Summary screen
And we are good to go
Dont forget to click on rebook on completion, so that the required restart will be achieved by the operation system automatically. This role installation may take up some time depending on your computer hardware.
So far there is one installation left the LDAP. On initial configuratin tasks windows click on add roles and on the list choose Active Directory Lightweight Directory Services and click on next
Next
Next
Now installation begins
And we are good to go with LDAP
So now lets add a user with full rights and we can give it a shot to see and add users computers on AD. Type in dsa.msc
Go to users and right click on the right pane and create a new user
give it a short name for now we can make this a temp admin out of the user
So this is a bit tricky part when we try to set windows server has a strong password sequence so that you need one upper letter in your password type something like Tugrul3445admin
So now time to grand the newly created user the domain and admin rights. Right click on the user and click on properties and navigate to the Members of tab
Click on add and give these rights
Click on Okay and Apply in the and we now have our user with full domain and admin rights. so lets try to list our domain users and groups. To see that we need to gather cn and dc names launch command line and type in this command
dsquery user -name <username>
You will see something like this:
I used JXplorer to browse through my AD server
The below example connection config
Dont forget to turn your firewall off or if you want to use the firewall then add the incoming ports the exceptions port of 398 SSL 698