The Collaboration Strategy
Thursday, September 29, 2011
Tuesday, April 12, 2011
Some facts about MS LYNC 2010
- Topology builder will not show group chat servers. ( group chat is still the orphan child for lync)
- Lync client will reeive notification if some one is trying to add you to the buddy list. (is'nt it interesting)
- During first login to LYNC user will not see the directory for few hours (thats sad)
- Their is no guarantee that load will balance in LYNC pool.( whats the logic)
- If new user is enabled for LYNC, users have to wait for few hours to add the new user to the contact list.
- Cannot force the address book sync.
- HLB is used for HTTP/HTTPs traffic and LYNC pool is used for HA
- EDGE server is on DMZ doesn't show in AD ( Security)
- Director server receives both good and bad authentication. Front server receives only good logins ( thats really good)
- Primary and backup registrar details is cached locally. So in case of failover client knows where to go ( thats smart)
- Dial-in conference should be deployed in each pool
- Anonymous meeting will always have one authenticated user to start the meeting
- Authenticated meeting will have all user to login with password
- Users wil not be authenticated with certificate during the first login.
- Every IM opens in new window (imagine you have 50 people IM to you)
- Recorded meeting are stored locally.
- Cannot paste screenshot or images in LYNC
- Cannot add custom images
- Failed user dont have to disconnect, they will be placed in the lobby and the leader will be notified
Monday, March 14, 2011
Microsoft Lync Server Guides
Microsoft Lync Server 2010 Device Management and Troubleshooting Guide
Read more
Microsoft Lync Server 2010 Standard Edition Deployment Guide
Read more
Microsoft Lync Server 2010 Response Group Deployment Guide
Read more
Microsoft Lync Server 2010 Enterprise Voice Guide
Read more
Enabling QoS with Microsoft Lync Server 2010
Read more
Microsoft Lync Server 2010 Enterprise Edition Deployment Guide
Read more
Migrating from Communications Server 2007 R2 to Lync Server 2010
Read more
Microsoft Lync Server 2010 Documentation Help File
Read more
Microsoft Lync Server 2010 Monitoring Deployment Guide
Read more
Microsoft Lync Server 2010 Archiving Deployment Guide
Read more
Microsoft Lync Server 2010 Edge Server Deployment Guide
Read more
Microsoft Lync Server 2010 Client and Device Deployment Guide
Read more
Microsoft Lync Server 2010 Active Directory Guide
Read more
Microsoft Lync Server 2010 Call Park Deployment Guide
Read more
Microsoft Lync Server 2010 Reference: Call Data Recording and Quality of Experience Database Schema
Read more
Microsoft Lync Server 2010 Supportability Guide
Read more
Microsoft Lync Server 2010 Announcement Deployment Guide
Read more
Microsoft Lync Server 2010 Group Chat Administration Guide
Read more
Microsoft Lync Server 2010 Group Chat Deployment Guide
Read more
Tuesday, February 1, 2011
Lync DNS Load Balancing and Server Draining
Recently I was onsite with a customer and was asked about DNS Load Balancing. How does it work? Why the change from OCS 2007 R2?
DNS Load Balancing
Microsoft Office Communications Server 2007 requires a Hardware Load Balancer (HLB) to provide resilience for the Enterprise pool. This configuration is both expensive and difficult to configure for SIP load balancing. Lync 2010 introduces DNS load balancing as an alternative to hardware load balancing.
How it Works
The front-end servers register their fully qualified domain name (FQDN) as A records in DNS. When the Enterprise pool is created, the pool FQDN is registered to return from DNS the list of IP addresses of all the front-end servers. The client attempts to connect to one of the IP addresses that were returned. If this connection fails, the client attempts to connect to the next IP address in the list until the connection succeeds.
Server Failure and Recovery
When a server fails, the physical registrar sequence is updated to show the server as unavailable and shared amongst all surviving servers by using a server-server heartbeat. Users are redirected to the next server in their logical registrar sequence and are then connected in backup mode. The server will be recovered returning the physical registrar sequence back to its original state.
Server Commission and Decommission
When topology changes occur, the logical registrar sequence is recalculated for all users. Some users are re-homed to a different front-end server in the same pool. When the server is fully operational, the heartbeat process updates the physical registrar sequence. This results in the batched re-registration process. Decommission is very similar to server failure, with the exception of the re-home to a new primary registrar being part of the decommission process. The topology change results in the recalculation of the logical registrar sequence. This step doesn't happen in a server failure.
You can use DNS load balancing for the SIP traffic on Front End pools and Director pools. With DNS load balancing deployed, you still need to also use hardware load balancers for these pools, but only for HTTP and Distributed Component Object Model (DCOM) traffic. The hardware load balancer is used for HTTP traffic from clients over ports 443 and 80, and for DCOM traffic over port 135 from administrators performing user moves.
Although you still need hardware load balancers for these pools, their setup and administration will be primarily for HTTP traffic, which the administrators of hardware load balancers are accustomed to.
DNS Load Balancing Decision Guidelines
Situation | DNS load balancing supported? | DNS load balancing recommended? | Hardware load balancer (only) recommended? |
All or most users homed in the pool run Lync Server 2010 clients. | Yes | Yes | |
Many users homed in the pool still running older clients. | Yes | Yes | |
Interoperates only with other Lync Server 2010 servers. | Yes | Yes | |
Interoperates with many servers running earlier versions of Office Communications Server. | Yes | Yes | |
Running Exchange UM with Exchange 2010 SP1 (or not running Exchange UM) | Yes | Yes | |
Running Exchange UM with earlier versions of Exchange | Yes | Yes |
Before you can use DNS load balancing, you must:
- Override the internal web services pool FQDN.
- Create DNS A host records to resolve the pool FQDN to the IP addresses of all the servers in the pool.
To override internal web services FQDN
1. From the Lync Server 2010 program group, open Topology Builder.
2. From the console tree, expand the Enterprise Edition Front End pools node.
3. Right-click the pool, click Edit Properties, and then click Web Services.
4. Below Internal web services, select the Override FQDN check box.
5. Type the pool FQDN that resolves to the physical IP addresses of the servers in the pool.
6. Below External web services, type the external pool FQDN that resolves to the virtual IP addresses of the pool, and then click OK.
7. From the console tree, select Lync Server 2010 , and then in the Actions pane, click Publish Topology.
To create DNS A Host Records for all internal pool servers
1. For each Front End Server in your pool, create a DNS A Host record that maps the pool FQDN to the IP address of that Front End Server.
For example, if you had a pool named pool1.contoso.edu and three front-end servers, you would create the following DNS entries:
FQDN | Type | Data |
Host A | 192.168.1.10 | |
Host A | 192.168.1.20 | |
Host A | 192.168.1.30 | |
Server Draining
A new feature called server draining enables you to take a server offline without any loss of service to users. When a server is drained it stops taking new connections and calls. These new connections and calls are routed through other servers in the pool. A server being drained allows its sessions on existing connections to continue until they naturally end. When all existing sessions have ended, the server is ready to be taken offline
Adding Custom Presence to Lync
Office Communicator has supported the customization of up to 4 additional presence states for some times, and there are many articles all over the Internet on this topic. But I have not yet seen one specifically for Lync, so here is a brief overview.
Basically the same configuration steps are used as what Office Communicator 2007 R2 required, since a change to the default security behavior was added after the 2007 (R1) client which prevented the use of non HTTPS connections to the configuration file.
- Create a new XML file on the local workstation and customize the presence states and descriptions.
- Disable SIP High Security Mode within Lync.
- Enable Custom Presence States within Lync.
So if you already know how to do this in the OCS R2 client, then follow the same steps. For those of you new to the Communications Server products then here is a step-by-step walkthrough specifically for Lync.
Configuration File
The custom configuration information is stored in an XML file that must be manually created first. Unique entries can be created with a few limitations: a maximum of 4 states and a limit of 64 characters in the description text. This file can be accessed by the Lync client using either direct access to the file (via local disk or shared directory on a remote server) or as a web client using HTTP or HTTPS.
The aforementioned change between OC 2007 and 2007 R2 is the default behavior is now to force a secure connection to the XML file, limiting the option to only accessing the file via HTTPS. This is fine when you want the same custom states to be available for multiple users across all workstations, but for simply adding the additional states to a single primary workstation for yourself using a local file is the best approach.
Because Lync follows the same default behavior of forcing HTTPS then in order to use a local XML file this behavior will need to be disabled, which will be addressed in the next section. For now the following steps should be performed to create the configuration file and store it on the local workstation.
- Copy the following text and save into a new text file named presence.xml saved somewhere on the local workstation. (e.g. c:\Windows\presence.xml). (This file can be saved anywhere as long as file security settings allow read access to it. Commonly it can be stored in either the client installation directory or user's documents folder. I simply prefer to drop stuff in the system directory and the path is simple and does not include spaces which often require encapsulating paths within quotes.)
<customStates>
<customState ID="1" availability="Busy">
<activity LCID="1033">Urgent Interruptions Only</activity>
</customState>
<customState ID="2" availability="Busy">
<activity LCID="1033">Customer Demo</activity>
</customState>
<customState ID="3" availability="Busy">
<activity LCID="1033">In a Video Call</activity>
</customState>
<customState ID="4" availability="Busy">
<activity LCID="1033">In Training Session</activity>
</customState>
</customStates>
- Within the presence.xml file edit the availability values and description text to customize each of the 4 custom states to the desired information. The availability values are limited to the following strings: Online, Busy, and Do-Not-Disturb. The activity string text is limited to a maximum of 64 characters.
Registry Settings
To trigger the Lync client to import and use the custom state information two settings will need to be set within the local workstation's registry. The first is to allow a local file to be read and removed the HTTPS requirement while the second settings tell Lync where to find the presence configuration file.
- Create a new REG_DWORD value named EnableSIPHighSecurityMode in the Communicator Software Policies key shown below. Enter the value of '0' to disable this security mode.
Path: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Communicator
Name: EnableSIPHighSecurityMode
Value: 0
- Create a new REG_SZ value named CustomStateURL in the same key as shown below. Enter the absolute path to the presence.xml file using the file:/// URL format.
Path: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Communicator
Name: CustomStateURL
Value: file:///C:/Windows/presence.xml
Restart Lync
- Exit and restart the Lync client to pick up the configuration changes and then pull down the status menu to locate the new choices.
Lync 2010 Client Policies
Rejoice Lync Administrators! Gone are the days of out-of-band provisioning (Group Policy) and utilizing in-band-provisioning (connecting to the server and getting custom settings). This is great news as many companies have machines that are either domain-joined and/or are outside of the network. Deploying Group Policies are not viable for non-domain joined machines and are possible to mobile workers if you are using Direct Access. But, with Lync 2010, you won't have to worry about either. Because Group Policies for Lync 2010 Client Settings have now been moved to in-band provisioning. Lync 2010 uses the Lync Management Shell (LMS) to manage these in-band settings utilizing commands with the following noun: CSClientPolicy*. Commands with this noun include:
- New-CSClientPolicy
- Get-CSClientPolicy
- Set-CSClientPolicy
- Grant-CSClientPolicy
- Remove-CSClientPolicy
- New-CSClientPolicyEntry
The main commands will will look at are the first four commands.
The biggest thing to note about Client Policies, is that they can be configured at three different levels. These levels include:
- User Level
- Site Level
- Global Level
By default, user policies are set at the Global Level. Unfortunately, the Get-CSClientPolicy -Identity User, does not show anything other than the user set policies. So let's say I want to see what I am assigned. I can run the following command:
Get-CSUser "Shudnow, Elan"
VoicePolicy : ChicagoVoicePolicy
ConferencingPolicy :
PresencePolicy :
DialPlan :
LocationPolicy :
ClientPolicy : ChicagoClientPolicy
ClientVersionPolicy :
ArchivingPolicy :
PinPolicy : ChicagoPinPolicy
ExternalAccessPolicy :
HostedVoiceMail :
HostedVoicemailPolicy :
If one of the variables above is $null, that doesn't mean you are not abiding by some policy. The above will only display User Level Policies. Site Level and Global Policies are not displayed. This is because User Level Policies are readily available in Active Directory whereas the Site Level Policies and Global Policies. More information on this as well as a script that can provide more verbose information showing what policies including Site Level Policies or Global Level Policies are included here.
But by default, we can see that no policies exist other than the Global Policy by running the following command:
There are some fundamental things you should know about when managing policies on users:
- When we want to create policies, we use the New-CSClientPolicy command.
- When we want to modify policies, we use the Set-CSClientPolicy command.
- When using the Set-CSClientPolicy with no -Identity (as -Identity is actually Optional), the Global Policy is modified.
- When using the Set-CSClientPolicy with the -Identity specified, if we want to modify or create a Site Policy, we prefice the Identity with site:. For Example: Set-CSClientPolicy -Identity site:Chicago.
- When using the Set-CSClientPolicy with the -Identity specified, if we want to modify or create a User Policy, we do not prefice the Identity. For Example: Set-CSClientPolicy -Idenitty ChicagoClientPolicy.
- When setting a client policy on a user, we use the Grant-CSClientPolicy. For Example: Grant-CsClientPolicy -Identity "Elan Shudnow" -PolicyName SalesPolicy
Example
Let's take a look at an example. Let's remove the ability for my account to be able to display photos. As you can see in the following screenshot, I currently have the ability to display photos:
We need to first create the ChicagoClientPolicy. We do this by running the following command:
Now let's re-run the command we saw in the first screenshot in this article to verify we see both a Global Policy as well as our new ChicagoClientPolicy.
I will run the following two commands command to remove the ability to Display Photos for our new ChicagoClientPolicy and then verify the DisplayPhoto parameter is set to NoPhoto:
Now we'll have to assign the ChicagoClientPolicy to my user account and then verify it was assigned. We do this by running the following commands:
After signing out and signing back in, voila, pictures are no longer there. Success!
But, let's say we wanted to reverse this. You may think to yourself, can I just set the setting to Null/Remove Policy or do I have to set the property to the opposite value to reset the registry setting? Well, let's have a look. I'm going to try to just remove the policy from my account and verify that and then see if that takes care of it. I'll do this by running the following command:
After signing out and signing back in, voila, pictures are back. Success again!
Monday, January 31, 2011
Friday, January 28, 2011
Server Hardware Platforms
The specific hardware used for Lync Server 2010 deployment can vary depending on size and usage requirements. This section describes the recommended hardware. Although these are recommendations, not requirements, using hardware that does not meet these recommendations can result in significant performance impacts and other problems.
Hardware Recommendations for Servers Running Lync Server 2010
Hardware component | Recommended |
---|---|
CPU | One of the following:
|
Memory | 16 GB |
Disk | Local storage with at least 72 GB free disk space on a 10,000 RPM disk drive |
Network | 1 network adapter required (2 recommended), each 1 Gbps or higher |
Hardware Recommendations for Directors
Hardware component | Recommended |
---|---|
CPU | One of the following:
|
Memory | 4 GB |
Disk | Local storage with at least 72 GB free disk space on a 10,000 RPM disk drive |
Network | 1 network adapter required (2 recommended), each 1 Gbps or higher |
Hardware Recommendations for Back End Servers and Other Database Servers
Hardware component | Recommended |
---|---|
CPU | One of the following:
|
Memory | 32 GB recommended for Back End Server (with or without collocated Archiving and Monitoring databases), 16 GB recommended for Archiving and Monitoring database (not collocated with the Back End Server). |
Disk | Local storage with at least 72 GB free disk space on a 10,000 RPM disk drive |
Network | 1 network adapter required (2 recommended), each 1 Gbps or higher each |
Thursday, January 27, 2011
How to complete basic backup of your OCS installation, including configuration and databases.
- First Create an folder on the C: drive of the FE server called “Backup”
- Browse to the new folder “c:\Backup”
- Create a new .bat file called “OCS-backup.bat”
- Edit the .bat file
“C:\Program Files\Common Files\Microsoft Office Communications Server 2007\lcscmd” /config /action:export /level:machine /configfile:c:\backup\[name of front-end server]-Serversettings.xml /fqdn:[fqdn of front-end server]
“C:\Program Files\Common Files\Microsoft Office Communications Server 2007\lcscmd” /config /action:export /level:machine /configfile:c:\backup\[name of mediation server]Serversettings.xml /fqdn:[fqdn of mediation server]
“C:\Program Files\Common Files\Microsoft Office Communications Server 2007\lcscmd” /config /action:export /level:pool /configfile:c:\backup\[poolname]-Pool.xml /poolname:[poolname]
“C:\Program Files\Common Files\Microsoft Office Communications Server 2007\lcscmd” /config /action:export /level:global /configfile:c:\backup\[poolname]-Global.xml /poolname:[poolname]
“C:\Program Files\Common Files\Microsoft Office Communications Server 2007\lcscmd” /config /action:export /level:global,pool /configfile:c:\backup\[poolname]-GlobalAndPool.xml /poolname:[poolname]
————END————-
Please note that the pool name is the same as the hostname of the Front End server in Standard Edition deployment.
- Save the file and give it a test run. You should get 5 .xml files in c:\backup directory
The command is the same as for the Mediation and Front End server:
——-Access Edge Backup——–
“C:\Program Files\Common Files\Microsoft Office Communications Server 2007\lcscmd” /config /action:export /level:machine /configfile:c:\backup\Serversettings.xml /fqdn:
——–END——–
Then we move to backing up SQL Databases:
If you have a backup application that supports SQL 2005, its possible to backup the databases directly.
If you are left without this tool, there are other ways. In this case i will describe the procedure for the Standard edition of OCS deployments, and there for assume that OCS is using an SQL 2005 Express.
First you need the Microsoft SQL Server Management Studio Express
- Download and install the package on your Front End server
———–RTC-backup.sql———–
BACKUP DATABASE [rtc] TO DISK = N’C:\Backup\rtc.bak’ WITH NOFORMAT, INIT, NAME = N’rtc-Full Database Backup’, SKIP, NOREWIND, NOUNLOAD, STATS = 10
GO
—————END————–
———–RTCconfig-backup.sql———–
BACKUP DATABASE [rtcconfig] TO DISK = N’C:\Backup\rtcconfig.bak’ WITH NOFORMAT, INIT, NAME = N’rtcconfig-Full Database Backup’, SKIP, NOREWIND, NOUNLOAD, STATS = 10
GO
—————END————–
———–RTCdyn-backup.sql———–
BACKUP DATABASE [rtcdyn] TO DISK = N’C:\Backup\rtcdyn.bak’ WITH NOFORMAT, INIT, NAME = N’rtcdyn-Full Database Backup’, SKIP, NOREWIND, NOUNLOAD, STATS = 10
GO
—————END————–
- Create the 3 .sql scripts and save them to the c:\backup folder.
- Now create a new .bat file called OCS-sql-backup.bat
sqlcmd -S .\rtc -i c:\backup\rtc-backup.sql
sqlcmd -S .\rtc -i c:\backup\rtcconfig-backup.sql
sqlcmd -S .\rtc -i c:\backup\rtcdyn-backup.sql
—————END————–
Now you have 2 .bat files (OCS-sql-backup.bat & OCS-backup.bat) and all that is left is to create a couple of Scheduled Task to run these every day, and configure your file level backup to take backup of the c:\Backup folder.
Lync 2010 v/s OCS 2007
OCS 2007 / 2007 R2 | Lync Server 2010 |
Virtualization not supported accepts some roles. | Every role can be either virtual or physical. |
A/V conferencing service cannot work separate. | A/V conferencing service can run in a standalone server role which we can call A/V Conferencing Server. |
No specific limits for A/V conferencing pool. | If site has more than 10,000 users, we recommend that you deploy a separate A/V Conferencing pool. |
No Survivable Branch Appliance. | Survivable Branch Appliance, which is a new device introduced in Lync Server 2010. |
Mediation role cannot be collocated with FE. | Collocation of mediation with FE is recommended if you are not using SIP trunking or Direct SIP. |
No Topology Builder. | Lync 2010 giving you the opportunity to create your own topology for deployment. |
No Central Management Store kind of thing. | In Microsoft Lync Server 2010, configuration data about servers and services is moved to the Central Management store. Read-only copies of the data are replicated to all servers in the topology, including Edge Servers and survivable branch appliances |
No Management Shell accept LCSCMD command. | The Lync Server 2010 Management Shell is a new method of administration and management. |
No Role base access control. | Lync introduces role-based access control (RBAC). Lync Server 2010 includes 11 predefined roles that cover many common administrative tasks, also you can create custom roles. |
MMC for Administration. | Administration console is no longer using MMC, Lync Server Control Panel replaces the MMC administrative interfaces |
No load balancing for SIP traffic. | The Lync Server 2010 introduces DNS load balancing for SIP and media traffic (you will still need hardware LB for other traffic such as HTTP however this is the easiest part in configuring a HW load balancer) |
Edge Server is separate and in DMZ. | You manage Edge Servers from the internal network. All configuration data for servers and services resides in the Central Management database, which you can manage by using internal administrative tools. |
No Support for hosted Exchange UM. | Lync Server 2010 introduces support for integration with hosted Exchange UM. |
No Support for Enhanced 9-1-1. | Lync supports Enhanced 9-1-1 (E9-1-1) as part of your Enterprise Voice deployment. |
1 Mediation means 1 Gateway. | New for the Mediation Server in Microsoft Lync Server 2010 is the ability for a single Mediation Server to route outbound calls through multiple gateways. |
No separate pool for Mediation. | Lync Server 2010 has the ability for a Mediation Server to be deployed as a pool; this pool can be collocated with the Front End pool, or can be a standalone pool. |
MOC cannot be updated through WSUS. | Lync client can be updated through WSUS. |
No support for Analog devices. | Lync Server 2010 provides support for analog devices. Specifically, the supported analog devices are analog audio phone and analog fax machines. Now you can configure the analog gateways and devices in your organization to use Lync Server 2010. |
Setting Up Your First Domain Controller With Windows Server 2008
To use the command, click on Start > Run > and then write dcpromo > Click OK
after the binaries were installed.
Deployment configuration | Advanced mode installation wizard pages |
New forest | Domain NetBIOS name |
New domain in an existing forest | On the Choose a Deployment Configuration page, the option to create a new domain tree appears only in advanced mode installation. Domain NetBIOS name Source Domain Controller |
Additional domain controller in an existing domain | Install from Media Source Domain Controller Specify Password Replication Policy (for RODC installation only) |
Create an account for a read-only domain controller (RODC) installation | Specify Password Replication Policy |
Attach a server to an account for an RODC installation | Install from Media Source Domain Controller |
Directory Services Restore Mode Administrator Password (DSRM) page, write a password and confirm it. This password is used when the domain controller is started in Directory Services Restore Mode, which might be because Active Directory Domain Services is not running, or for tasks that must be performed offline.
Make sure that you memorize this password when you need it. I know many administrators forgot it when they most needed it !!
Make sure the password meet the password complexity requirements of the password policy, that is a password that contains a combination of uppercase and lowercase letters, numbers, and symbols. else you will receive the following message :
- If you have set up a domain controller previously with Windows 2000 Server, or Windows Server 2003, then you would be familiar with the
- The system will start checking if Active Directory Domain Services ( AD DS) binaries are installed, then will start installing them. The binaries could be installed if you had run the dcpromo command previously and then canceled the operation
- The Active Directory Domain Services Installation Wizard will start, either enable the checkbox beside Use Advanced mode installation and Click Next , or keep it unselected and click on Next
- The Operating System Compatibility page will be displayed, take a moment to read it and click Next
- Choose Create a new domain in a new forest, Click Next
- Enter the Fully Qualified Domain Name of the forest root domain inside the textbox, click Next
- If you selected Use advanced mode installation on the Welcome page, the Domain NetBIOS Name page appears. On this page, type the NetBIOS name of the domain if necessary or accept the default name and then click Next.
- Select the Forest Functional Level, choose the level you desire and click on Next. Make sure to read the description of each functional level to understand the difference between each one.
- In the previous step, If you have selected any Forest Functional Level other than Windows Server 2008 and clicked on Next , you would then get a page to select the Domain Functional Level. Select it and then click on Next
- In the Additional Domain Controller Options page, you can select to install the Domain Name Service to your server. Note that the First domain controller in a forest must be a Global Catalog that's why the checkbox beside Global Catalog is selected and it cannot be cleared. The checkbox is also selected by default when you install an additional domain controller in an existing domain, however you can clear this checkbox if you do not want the additional domain controller to be a global catalog server. The first domain controller in a new forest or in a new domain can not be a Read Only Domain Controller (RODC), you can later add a RODC but you must have at least one Windows Server 2008 Domain Controller.
I want to set my DC as a DNS Server as well, so I will keep the checkbox beside DNS Server selected and click on Next
- If the wizard cannot create a delegation for the DNS server, it displays a message to indicate that you can create the delegation manually. To continue, click Yes
- Now you will have the location where the domain controller database, log files and SYSVOL are stored on the server.
The database stores information about the users, computers and other objects on the network. the log files record activities that are related to AD DS, such information about an object being updated. SYSVOL stores Group Policy objects and scripts. By default, SYSVOL is part of the operating system files in the Windows directory
Either type or browse to the volume and folder where you want to store each, or accept the defaults and click on Next
- In the
- Summary page will be displayed showing you all the setting that you have set . It gives you the option to export the setting you have setup into an answer file for use with other unattended operations, if you wish to have such file, click on the Export settings button and save the file.
- DNS Installation will start
- Followed by installing Group Policy Management Console, the system will check first if it is installed or not.
- Configuring the local computer to host active directory Domain Services and other operations will take place setting up this server as a Domain Controller
- Active Directory Domain Services installation will be completed, click Finish, then click on Restart Now to restart your server for the changes to take effect.
- Once the server is booted and you logon to it, click on Start > Administrative Tools , will notice that following have been installed :
- Active Directory Domains and Trusts
- Active Directory Sites and Services
- Active Directory Users and Computers
- ADSI Edit
- DNS
- Group Policy Management
Setting up a Domain Controller in Windows Server 2008 to install Active Directory Domain Services is performed by running the dcpromo command. It has some new options like using Advanced Mode Installation, and exporting settings to an answer file . In my next articles, I will show you how to perform an unattended installation to set up your domain controller, and also how to set up an additional domain controller using Windows Server 2008